Google has blocked 1.6 million phishing emails since May 2021, according to a report published by Google’s risk analysis team. The emails were reportedly part of a malware campaign aimed at stealing YouTube accounts and promoting crypto plans.
Google’s threat analysis team, in collaboration with YouTube, Gmail, Trust & Security, Cybercrime Investigation Team and Security Browsing Group, has reduced phishing emails on Gmail by 99.6 percent.
“We blocked 1.6M messages to targets, showed 62K Safe Browsing phishing warnings, restricted 2.4K files, and successfully restored 4K accounts,” Google said in a blog post.
The perpetrators have been involved in spreading propaganda, government-sponsored abductions and financial attacks, the report said.
“By the end of 2019, our team has stopped financially supported phishing campaigns targeting cookie theft malware YouTube,” the company said.
“We say that a group of hackers employed in the Russian-speaking platform are behind the campaign. Or use Cryptop to spread scams.
In a blog post, the company shared examples of various methods, techniques, and approaches (TTPs) used to attract users. In addition, Google has provided instructions on how users can better protect themselves.
Cookie theft is also a session hacking technique known as “cookie-by-attack”, in which hackers can gain user accounts with session cookies stored in the browser.
The hacking technique has been around for decades, but has returned as a major security threat due to its widespread acceptance of MFA, making it difficult to carry out attacks and shift attackers’ attention to social engineering strategies, the company said. .