Skip to content
Search

Latest Stories

Google issues password warnings as "all 2.5 billion Gmail users are now at risk"

Recent reports suggest all 2.5 billion Gmail users may be at risk

Gmail hack warning

Passkeys and non-SMS two-factor authentication now critical for account safety

iStock
Gayathri Kallukaran
By Gayathri KallukaranAug 26, 2025
Gayathri Kallukaran
Gayathri Kallukaran is a Junior Journalist with Eastern Eye. She has a Master’s degree in Journalism and Mass Communication from St. Paul’s College, Bengaluru, and brings over five years of experience in content creation, including two years in digital journalism. She covers stories across culture, lifestyle, travel, health, and technology, with a creative yet fact-driven approach to reporting. Known for her sensitivity towards human interest narratives, Gayathri’s storytelling often aims to inform, inspire, and empower. Her journey began as a layout designer and reporter for her college’s daily newsletter, where she also contributed short films and editorial features. Since then, she has worked with platforms like FWD Media, Pepper Content, and Petrons.com, where several of her interviews and features have gained spotlight recognition. Fluent in English, Malayalam, Tamil, and Hindi, she writes in English and Malayalam, continuing to explore inclusive, people-focused storytelling in the digital space.
See Full Bio
Follow:

Highlights:

  • Hackers exploiting weak Gmail passwords in latest wave of attacks.
  • Google says most users still rely on outdated password security.
  • Passkeys and non-SMS two-factor authentication now critical for account safety.
  • Salesforce database breach linked to phishing and scam attempts.
  • Users urged to act immediately by changing passwords and upgrading security.

Google confirms passwords at risk

Google has confirmed that Gmail accounts are being targeted by hackers, with compromised passwords behind a significant number of successful intrusions. The company has warned that most users must now change their passwords to secure their accounts.

Recent reports suggest all 2.5 billion Gmail users may be at risk after a breach involving Google’s Salesforce database. Hackers are exploiting this exposure by posing as Google support staff in emails and phone calls, sometimes using AI tools to make the scams more convincing.

Google’s security recommendations

Even before this latest spate of attacks, Google had urged account holders to strengthen security by moving away from passwords alone. The company recommends:

  • Adding passkeys and making them the default login option.
  • Using two-factor authentication (2FA) methods other than SMS.
  • Regularly updating passwords and ensuring they are unique.

Google data shows that only 36% of users regularly update their passwords, leaving the majority at risk.

How hackers exploit passwords

Most attacks involve fake sign-in pages designed to steal login credentials. Some also trick users into sharing 2FA codes or bypass 2FA entirely. Once a password is compromised, hackers can attempt to use it across multiple platforms, putting Amazon, PayPal and other accounts at risk.

Experts recommend creating strong, unique passwords stored in a standalone password manager—not one built into Chrome or other browsers.

Ongoing phishing attempts

According to PC World, although passwords were not leaked in the Salesforce breach, customer and company names were exposed, increasing the risk of phishing. Users have reported scam calls and emails from people impersonating Google staff.

On Reddit, some account holders have already described suspicious emails and spoofed error messages, highlighting new phishing methods circulating online.

How to stay secure

Google urges users to take immediate steps:

  • Change your Gmail password now if you have not done so this year.
  • Add a passkey and always use it as the default method of sign-in.
  • Switch to an authenticator app for 2FA instead of SMS.
  • Avoid signing in via emailed links—always go directly to your Google account and review activity under Security settings.
hackinggmailsecurity breachpasswordsgoogle

Related News

planet birth around infant star HOPS-315
Tech

Astronomers capture earliest moment of planet birth around infant star HOPS-315

More For You

Pinterest

Pinterest will make “AI-modified” content labels more visible

iStock

Pinterest introduces new controls to limit AI-generated images in user feeds

Highlights:

  • Users can now restrict AI-generated visuals across select categories.
  • Pinterest will make “AI-modified” content labels more visible.
  • The update aims to restore trust amid growing user backlash.

Pinterest responds to complaints over AI-generated ‘slop’

Pinterest has rolled out new controls allowing users to reduce the amount of AI-generated content in their feeds, following widespread criticism over an influx of synthetic images across the platform.

The company confirmed on Thursday that users can now personalise their experience by limiting generative imagery within specific categories such as beauty, art, fashion, and home décor. The move comes as many long-time users voiced frustration that their feeds were increasingly dominated by low-quality AI visuals, often referred to online as “AI slop.”

Keep ReadingShow less
© Copyright 2025 Garavi Gujarat Publications Ltd & Asian Media Group USA Inc
Contact Us