Google says the phishing attack’s goal was to monitor emails and change forwarding settings. The company says the account hijackings were not the result of a problem with Gmail.
Phishing attacks can be executed with malware or when a user simply responds to a fraudulent email and unknowingly gives away sensitive information. Banks and email providers will never send you an email asking you to verify your credentials. If you hover over these fake hyperlinks you’ll often see that the link that appears to be http://www.jennstrathman.com is really http://www.phishing.com and so on.
Google reminded consumers to improve security of their accounts. This is good advice for everyone who uses email. They suggest a 2-step verification process where a code is sent to your phone or other device. You need to enter your password and that code before you sign in. Google will remember that code for that computer for up to 30 days which makes it a little less of a pain to use 2-step verification.
If you’re interested, watch this video on how you do it. It’s pretty good.
Some verification processes can be annoying. I recently tried Facebook’s, and found it to be a huge hassle. I say this, and I’m a big advocate of privacy and doing what you can to reduce your digital footprint. If you use the same computer all the time, it may not be a big deal. At least try it and see if it works for you as all the verification processes vary slightly.
Whether it’s email or your bank account, always use a strong password. Characters, Capital Letters, and numbers are important to making it more difficult to figure out a password.
Remember all these passwords is difficult as every company has different requirements. Instead of remembering them all, you may want to try a password management program. Just choose carefully as you are giving your iinformatio to a third party application. Security consultants I’ve talked with like KeePass.
Avoid using a public computer. You don’t know if there’s malware loaded onto the computer to steal your keystrokes. Think it can’t happen to you. Think again. This woman accessed hers on a cruise ship, and suddenly someone hijacked her email account.
Related links you may like:
Google yourself to find private information that’s publicly posted
New ways to erase your digital footprint