Google is shutting down its dark web report feature in January

Google is discontinuing its "dark web report" security tool, stating that it wants to focus on other tools it believes are more helpful.

• Mayank Parmar
• December 15, 2025
• 06:24 PM
• 0

Fake Calendly invites spoof top brands to hijack ad manager accounts

An ongoing phishing campaign impersonates popular brands, such as Unilever, Disney, MasterCard, LVMH, and Uber, in Calendly-themed lures to steal Google Workspace and Facebook business account credentials.

• Bill Toulas
• December 02, 2025
• 09:00 AM
• 0

New Webinar: Choose Your Own Investigation — Browser Attack Edition

Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.

Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.

• Push Security Sponsorship

New VoidProxy phishing service targets Microsoft 365, Google accounts

A newly discovered phishing-as-a-service (PhaaS) platform, named VoidProxy, targets Microsoft 365 and Google accounts, including those protected by third-party single sign-on (SSO) providers such as Okta.

• Bill Toulas
• September 14, 2025
• 10:23 AM
• 0

Google patched bug leaking phone numbers tied to accounts

A vulnerability allowed researchers to brute-force any Google account's recovery phone number simply by knowing a their profile name and an easily retrieved partial phone number, creating a massive risk for phishing and SIM-swapping attacks.

• Bill Toulas
• June 09, 2025
• 03:36 PM
• 0

Fake Semrush ads used to steal SEO professionals’ Google accounts

A new phishing campaign is targeting SEO professionals with malicious Semrush Google Ads that aim to steal their Google account credentials.

• Bill Toulas
• March 21, 2025
• 01:16 PM
• 0

Google Pay alarms users with accidental ‘new card’ added emails

Google Pay alarmed users this week after erroneously sending out "new card" added email notifications. Google has acknowledged that the email was "accidental" and that no user information was compromised.

• Ax Sharma
• October 06, 2024
• 09:00 AM
• 0

Google warns again it will start deleting inactive accounts in December

In emails sent over the weekend, Google warned customers again that it would start deleting inactive accounts on December 1st, 2023.

• Sergiu Gatlan
• July 31, 2023
• 02:14 PM
• 1

Google will delete accounts inactive for more than 2 years

Google has updated its policy for personal accounts across its services to allow a maximum period of inactivity of two years.

• Bill Toulas
• May 21, 2023
• 11:07 AM
• 2

Google Authenticator now backs up your 2FA codes to the cloud

The Google Authenticator app has received a critical update for Android and iOS that allows users to back up their two-factor authentication one-time passwords (OTPs) to their Google Accounts and have multi-device support.

• Bill Toulas
• April 25, 2023
• 10:39 AM
• 5

Google sees 50% security boost for 150M users after 2FA enroll

After accelerating its efforts to auto-enroll as many accounts as possible in two-factor authentication (2FA), Google announced that an additional 150 million users now have 2FA enabled.

• Sergiu Gatlan
• February 08, 2022
• 06:00 AM
• 0

Google to auto-enroll 150 million user accounts into 2FA

Google announced today that they plan on auto-enrolling 150 million accounts into two-factor authentication by the end of 2021.

• Lawrence Abrams
• October 05, 2021
• 03:53 PM
• 3

Twitter will soon let you log in with your Google account

Twitter has started testing a new feature that allows users to sign up for an account using their existing Google account.

• Mayank Parmar
• July 27, 2021
• 10:47 AM
• 0

Google Wants Your Phone to Protect Against Account Takeover Attacks

In a report on Friday, Google highlights the importance of linking a phone to an account when it comes to fighting hijacking attempts from automated attempts from bots, phishing, and targeted attacks.

• Ionut Ilascu
• May 19, 2019
• 01:20 PM
• 0

New Phishing Attack Uses Google Translate as Camouflage

A phishing campaign that attempts to steal Google account and Facebook credentials has been discovered that utilizes Google Translate as camouflage on mobile browsers.

• Lawrence Abrams
• February 07, 2019
• 07:15 PM
• 2

Chrome Extension Devs Use Sneaky Landing Pages after Google Bans Inline Installs

Distributors of unwanted Chrome extensions are coming up with new, sneaky, and simple methods to trick users into installing their extensions now that Google has banned inline installs.

• Lawrence Abrams
• October 05, 2018
• 11:44 AM
• 0

New Google Account Update Makes It Easier to Manage Your Data

In the past, Google consolidated a users account, privacy, and security settings into one control panel called Google Account. Today, Google is revamping this interface to make it easier to use by including a search feature, making security and privacy features more readily accessible, and by offering detailed summary pages.

• Lawrence Abrams
• June 21, 2018
• 10:39 AM
• 0