Google recommends that 2.5 billion Gmail users change their passwords following an advanced phishing attack that started through a Salesforce vulnerability.

 

Google recommends that 2.5 billion Gmail users change their passwords following an advanced phishing attack that started through a Salesforce vulnerability.

The attack included fake phone calls with attackers posing as Google representatives, prompting users to enter their login details.

Google did not specify the extent of the affected users but emphasized the need for an immediate password change. It also recommends enabling two-factor authentication (2FA) and avoiding entering login details during unidentified phone calls.

The password change recommendation was also delivered via messages within Gmail to ensure users take immediate action.