Sunday, December 22, 2024

Tech News, analysis, updates, comments, reviews

Google to Gmail users: Coronavirus phishing is targeting you. This is how we hit back

Google is adapting its machine-learning models for Gmail security to battle scammers, cybercriminals, and state-sponsored hackers exploiting fear over the COVID-19 coronavirus pandemic in phishing email attacks. 

The company says it blocked 18 million COVID-19 themed phishing emails last week. The blocked COVID-19 phishing emails targeting Gmail users would represent about 2.5% of the 100 million phishing emails Google said in 2019 it blocks daily. Google is also blocking 240 million COVID-related daily spam messages each day. 

The surge in coronavirus-themed phishing email and spam has prompted both Microsoft and Google to adjust product strategies to help protect customers from attackers. 

There hasn’t been an increase in overall phishing attacks, but attackers are tweaking messages to fit what’s likely to work under the current circumstances.

“We have put proactive monitoring in place for COVID-19-related malware and phishing across our systems and workflows. In many cases, these threats are not new – rather, they’re existing malware campaigns that have simply been updated to exploit the heightened attention on COVID-19,” Google said in a blogpost by Neil Kumaran, a product manager for Gmail Security, and Sam Lugani, a lead Security product marketing manager for G Suite and the GCP platform. 

The examples Google highlights are phishing email impersonating the World Health Organization (WHO) to dupe victims into donating to a fraudulent account or to distribute malware.

This tactic lines up with reports from Microsoft’s threat-intelligence teams, which found that coronavirus-themed attack email from scammers and cybercriminals have just been repurposed from older attacks.  

“We’re seeing a changing of lures, not a surge in attacks,” said Rob Lefferts, corporate vice president of Microsoft 365 Security

Following a Reuters report in March that state-sponsored attackers had targeted the World Healthcare Organization, Microsoft this week made AccountGuard available at no cost to healthcare providers and to human-rights and humanitarian organizations across the globe. 

The additional protection offers an anti-phishing shield to email accounts owned by highly targeted groups, such as people who work for political and human-rights organizations.   

Google’s equivalent, the Advanced Protection Program (APP), also recently gained new malware protections by automatically enabling Google Play Protect on Android devices with accounts enrolled in the program.

Last year it also made it easier for Gmail users to join APP by allowing enrollment with a smartphone’s security key instead of only physical security keys. The company in March claimed that no Gmail users enrolled in APP have been phished to date.  

However, Google has temporarily suspended enrollments for users who attempt to join the program with a phone’s built-in security key due to changes forced on it by the pandemic. Users with physical security keys can still enroll.

“Due to COVID-19, we’re making changes to protect the health of our workforce, resulting in changes to our enrollment process,” Google says on the Advanced Protection Program landing page

“While you can still enroll with two physical security keys, we are temporarily suspending enrollment with your phone’s built-in security key. If you are interested in enrolling with your phone’s built-in security key, join our waitlist.” 

Google notes that G Suite’s advanced phishing and malware controls are turned on by default, ensuring that all G Suite users automatically have these proactive protections in place. 

2020-04-161.png
Google has temporarily suspended enrollments for users who attempt to join the program with a phone’s built-in security   Image: Google

Get notified whenever we post something new!

spot_img

Migrate to the cloud

Make yourself future-proof by migrating your infrastructure and services to the cloud. Become resilient, efficient and distributed.

Continue reading

Salesforce Flaw Allows Full Account Takeover

A critical vulnerability has been discovered in Salesforce applications, which could potentially lead to a full account takeover. The flaw was identified during a penetration test and is tied to misconfigurations within Salesforce Communities, specifically within the Salesforce Lightning...

Concerns about the ICT Bill 2024 in Kenya

THis post has been updated after the attention it is gannering. The original post can be found here: https://web.archive.org/web/20240813033032/https://blog.blancorpsolutions.com/kenya/concerns-about-the-ict-bill-2024-in-kenya/ Kenya's tech industry has been a beacon of innovation and growth, thanks in part to a regulatory environment that has allowed...

What are the real intentions of tracking IMEI numbers?

Imagine if you had a magic map that could show you where all your favorite toys were at any time. Sounds pretty? Well, in Kenya, the government wants to do something similar, but with people’s phones. They plan to...

Enjoy exclusive discounts

Use the promo code SDBR002 to get amazing discounts to our software development services.