BIGFISH TECHNOLOGY LIMITED
15 October 2024

Gmail Users Beware About AI Scam that Takes Over Your Gmail Account

A sophisticated new scam aimed at Gmail users has emerged, employing artificial intelligence to deceive victims into giving over control of their accounts.

This "super realistic AI scam call" uses faked phone numbers, bogus account recovery notifications, and convincing AI-generated voices to trick victims into granting fraudulent account access requests.

According to Sam, the fraud usually starts with an unexpected Gmail account recovery notification claiming to originate from another nation.

If ignored, the scammers call back approximately 40 minutes later. The caller ID may display "Google Sydney" or another official-sounding name, lending legitimacy to the hoax.

 

AI Scam Call flaw
 
"I Googled the phone number, which directed me to official Google literature.The number appears to be legitimate, though I am aware of how easy it is to fake the number," Sam noted.

When contacted, an AI-generated voice with a plausible American accent claims to be from Google Support.

The "representative" alerts the user to questionable account behavior, frequently referencing logins from other nations. They then claim that someone has accessed the account and downloaded personal information, causing a sense of urgency.

To support their allegations, the scammers send a counterfeit email that looks to be from a legitimate Google domain. However, a deeper look exposes unmistakable evidence of fabrication, such as non-Google email addresses in the "To" section.

The ultimate goal is to persuade the victim to authorize the initial account recovery request, which will give the scammers complete access to the Gmail account.

They may then gain access to sensitive information, other associated accounts, or use the hacked email address to carry out more frauds.


To protect yourself:
1.Never approve an unexpected account recovery request.
2.Be wary of unsolicited calls purporting to be from Google Support.
3.Check caller IDs and email addresses carefully.
4.Consistently monitor your account's latest security behavior.
5.When in doubt, contact Google immediately through their established methods.

As artificial intelligence progresses, these scams become more sophisticated and convincing. Vigilance and skepticism are the best safeguards against such attacks.

If you believe you have been targeted, report the event to Google and consider changing your account passwords right away.

 

Source: Cyber Security News