Skip to main content

Google will warn businesses if state-sponsored hackers target G Suite users

In an effort to protect its business users from hacking, Google is rolling out a new feature for G Suite users that will let organizations know if any of their users have been targeted by a government-backed attack. By default, the warning feature is disabled, but administrators can turn on the feature to receive an email alert if Google detects any state-sponsored hacking attempts have been made, Google said in a blog post detailing the update. These hacking attempts can range from phishing, malware, or other means.

To enable the alerts, G Suite administrators can navigate to the Admin Console, click on Reports, select Manage Alerts, and go to the Government-backed hack option.

Recommended Videos

Even if an administrator receives an alert, it doesn’t mean that the user’s account has been compromised, Google cautioned. However, if an administrator feels that more action is necessary, Google also provides some simple tools to take action. Administrators can alert the user, share more details about the hacking attempts with the user, secure the user account, and manage alerts within the administrator dashboard.

While the alert gives organizations more insight into potential cyberattacks on their users, the feature isn’t new. Google has been warning Gmail users of government-backed hacks for years.

“Since 2012, we’ve warned our users if we believe their Google accounts are being targeted by government-backed attackers,” Google said. “We send these out of an abundance of caution — the notice does not necessarily mean that the account has been compromised or that there is a widespread attack. Rather, the notice reflects our assessment that a government-backed attacker has likely attempted to access the user’s account or computer through phishing or malware, for example.” These alerts are usually sent when Google detects phishing emails, attachments with malware, or brute-force attacks.

Google’s G Suite announcement comes after the company experienced criticism for Gmail’s new confidentiality mode, with the Department of Homeland Security expressing concern that protected email links may have the unintended consequence of leading to more phishing victims.

Given the rising number of cyberattacks, Microsoft also recently launched similar protections for its users through a new AccountGuard pilot program. Unlike Google’s efforts, Microsoft’s AccountGuard is only available at this time for accounts from political organizations, according to a report from Bleeping Computer. “This service is part of Microsoft’s ‘Election Defense Technologies’ and is offered on a non-partisan basis by invitation only,” the site reported.

Chuong Nguyen
Silicon Valley-based technology reporter and Giants baseball fan who splits his time between Northern California and Southern…
Google’s Ask Photo feature is available for users that joined a waitlist
Google's Ask Photos debut.

Google has been on a roll lately with updates that make its platform dramatically more user-friendly than before, and one of the most impressive of these is the new Ask Photos feature in Google Photos. The feature has been hinted at for the better part of a year, but the official announcement came at the beginning of September, when interested fans could sign up for a waitlist. According to the folks at 9to5Google, those early adopters might now have the feature available to them.

Ask Photos is a Gemini-powered tool that uses text prompts to search your photo library. If you have thousands of photos saved to the cloud, this feature makes it possible to find a specific image without scrolling for hours.

Read more
Your Gmail app will soon help protect you from scams
Moto G 5G (2024) in Sage Green showing Gmail.

Email scams are nothing new. The old Nigerian prince con has been around long enough that it's become a meme, but more modern scams can be a lot harder to pick out. According to statistics, nearly 3.4 billion phishing emails are sent per day. Gmail will soon implement a feature on its mobile platform that puts a checkmark beside verified senders to help users tell what's legit — and what possibly isn't — at a glance.

The feature already exists on the Gmail desktop website, but with over half of all users accessing their Gmail accounts from a mobile app, it's a welcome addition. It utilizes a standard called Brand Indicators for Message Identification (BIMI) and a Verified Mark Certificate (VMC). If an email contains these marks, it's highly unlikely they come from a malicious source.

Read more
Don’t trust that Google sign-in — how hackers are swiping passwords in Chrome
Google Chrome browser running on Android Automotive in a car.

Hackers are swiping passwords from Google accounts in Chrome, and it can happen from the official Google sign-in page. The vehicle being used is called the AutoIt Credential Flusher, and it was discovered by the researchers at OALabs. The attack locks you into your browser at the Google sign-in page and doesn't allow you to leave, all while logging your email and password as you sign into your Google account.

The attack leverages "kiosk mode" in Chrome, which is a limited full-screen interface that doesn't have elements like the address bar or navigation buttons. It's used mainly for demonstration purposes -- think a laptop on display at Best Buy. And this attack is using kiosk mode to annoy users enough that they give up their passwords. It also blocks some normal commands to exit full-screen mode, such as Esc and F11. 

Read more