New Delhi -°C
Today in New Delhi, India

Dec 15, 2019-Sunday
-°C

Humidity
-

Wind
-

Select city

Metro cities - Delhi, Mumbai, Chennai, Kolkata

Other cities - Noida, Gurgaon, Bengaluru, Hyderabad, Bhopal , Chandigarh , Dehradun, Indore, Jaipur, Lucknow, Patna, Ranchi

Sunday, Dec 15, 2019

Google issued 12,000 warnings about govt-backed attacks in Q3

Out of these 12,000 warnings, about 500 were sent to users in India, said Google.

tech Updated: Nov 27, 2019 15:17 IST
Indo Asian News Service
Indo Asian News Service
San Francisco
The user clicks the link, enters their password, and may also get asked for a security code if they have two-factor authentication enabled, allowing the attacker to access their account.
The user clicks the link, enters their password, and may also get asked for a security code if they have two-factor authentication enabled, allowing the attacker to access their account.(REUTERS)
         

Google sent 12,000 warnings to users in 149 countries that they were targeted by government-backed attackers during the three-month period from July to September this year. Out of these 12,000 warnings, about 500 were sent to users in India.

This is consistent with the number of warnings sent in the same period of 2018 and 2017, Google said.

“We’ve had a long-standing policy to send users warnings if we detect that they are the subject of state-sponsored phishing attempts, and have posted periodically about these before,” Shane Huntley from Google’s Threat Analysis Group wrote in a blog post on Wednesday.

Over 90 per cent of these users were targeted via “credential phishing emails”. These are usually attempts to obtain the target’s password or other account credentials to hijack their account.

ALSO READ: Government officials across 20 countries targeted for hacking through WhatsApp: Report

“We encourage high-risk users - like journalists, human rights activists, and political campaigns - to enroll in our Advanced Protection Program (APP), which utilises hardware security keys and provides the strongest protections available against phishing and account hijackings. APP is designed specifically for the highest-risk accounts,” Huntley said.

In a typical such attack, an attacker sends a phishing email with a security alert lure from “Goolge” suggesting the user secure their account. The user clicks the link, enters their password, and may also get asked for a security code if they have two-factor authentication enabled, allowing the attacker to access their account.

ALSO READ: Israeli spyware firm NSO Group sues Facebook over blocked accounts

Google’s Threat Analysis Group works to counter targeted and government-backed hacking against Google and its users. “In the past, we’ve posted on issues like phishing campaigns, vulnerabilities and disinformation. Going forward, we’ll share more technical details and data about the threats we detect and how we counter them to advance the broader digital security discussion,” Huntley said.

tags