Google’s 7-day Gmail account hack warning.
Hackers armed with the latest AI tools have turned their attention to your Gmail account, and for good reason, as gaining control of this provides them with a treasure trove of valuable data and ongoing access. Google has confirmed that responding within seven days is pivotal to retaining the keys to your email kingdom. Here’s what you need to know and do.
Gmail Hack Attacks Underway
I have been reporting about the increasingly sophisticated threats facing users of the world’s most popular email platform for months now. The pivotal moment for Gmail attacks occurred when the most convincing AI-driven hacking campaign so nearly succeeded in fooling a cybersecurity consultant at the end of 2024. Despite the best efforts of Google, these attacks have continued and are still ongoing.
The latest to come to my attention is all too familiar, apart from the fact that the target is Adam Mosseri, the head of Instagram. Mosseri explained that the attack started with a phone call pertaining to be from Google support, moved to an email sent from a noreply@google.com address and claimed his account had been compromised and a password change was required immediately.
This is similar to so many attacks that I have reported on across the course of the last year: 1, 2, 3. The mitigations are equally similar across the attack surface, and I advise you start here. and continue here. In the case of Mosseri, a Google spokesperson said that it has suspended the Google form and the site in question, and reminded users that “Google will never call you about your account.“
But what if it’s too late? What if the attackers have compromised your account, changed your password, 2FA protections and even your recovery email and telephone numbers?
Do not panic, Google can help, but you do need to act fast.
You Have 7 Days To Recover Your Hacked Gmail Account
The tactics used by these attackers are not unique to Gmail, all email platforms, all online services for that matter, are at risk of the same kind of account takeover threats. Gmail, however, is a bit like Windows when it comes to the hack attack threat: it’s very high profile and used by billions people. In other words, it’s a hacker magnet. The Google spokesman confirmed that situations where attackers both compromise an account and change passwords etc to prevent the real owner from logging in do happen. Another good reason to always use the latest phishing-resistant authentication technology, a passkey, rather than wait for an attacker to use theirs to lock down your account.
“We recommend all users to set up a recovery phone as well as a recovery email on their account,” Google said, “these can be used in cases where users forget their own passwords, or an attacker changes the credentials after hijacking the account.” Importantly, the original Google account holder has a seven-day period in which they can use the original recovery details to regain account control from the attacker.
A recovery phone number is analogous to seatbelt use in your car; it enhances your ability to recover fully after a hack, just as a seatbelt enhances your chances of survival in a crash. When your recovery information is changed, Google told me, you can still use your existing email or phone number for seven days to receive account recovery sign-in codes.
So, what are you waiting for? Add those recovery details now and be prepared in case the worst happens and a sophisticated hacker takes control of your Gmail account. Unlike if you ignore this advice, you have nothing to lose.
