Skip to content
Search

Latest Stories

Google issues password warnings as "all 2.5 billion Gmail users are now at risk"

Recent reports suggest all 2.5 billion Gmail users may be at risk

Gmail hack warning

Passkeys and non-SMS two-factor authentication now critical for account safety

iStock
Gayathri Kallukaran
By Gayathri KallukaranAug 26, 2025
Gayathri Kallukaran
Gayathri Kallukaran is a Junior Journalist with Eastern Eye. She has a Master’s degree in Journalism and Mass Communication from St. Paul’s College, Bengaluru, and brings over five years of experience in content creation, including two years in digital journalism. She covers stories across culture, lifestyle, travel, health, and technology, with a creative yet fact-driven approach to reporting. Known for her sensitivity towards human interest narratives, Gayathri’s storytelling often aims to inform, inspire, and empower. Her journey began as a layout designer and reporter for her college’s daily newsletter, where she also contributed short films and editorial features. Since then, she has worked with platforms like FWD Media, Pepper Content, and Petrons.com, where several of her interviews and features have gained spotlight recognition. Fluent in English, Malayalam, Tamil, and Hindi, she writes in English and Malayalam, continuing to explore inclusive, people-focused storytelling in the digital space.
See Full Bio
Follow:

Highlights:

  • Hackers exploiting weak Gmail passwords in latest wave of attacks.
  • Google says most users still rely on outdated password security.
  • Passkeys and non-SMS two-factor authentication now critical for account safety.
  • Salesforce database breach linked to phishing and scam attempts.
  • Users urged to act immediately by changing passwords and upgrading security.

Google confirms passwords at risk

Google has confirmed that Gmail accounts are being targeted by hackers, with compromised passwords behind a significant number of successful intrusions. The company has warned that most users must now change their passwords to secure their accounts.

Recent reports suggest all 2.5 billion Gmail users may be at risk after a breach involving Google’s Salesforce database. Hackers are exploiting this exposure by posing as Google support staff in emails and phone calls, sometimes using AI tools to make the scams more convincing.

Google’s security recommendations

Even before this latest spate of attacks, Google had urged account holders to strengthen security by moving away from passwords alone. The company recommends:

  • Adding passkeys and making them the default login option.
  • Using two-factor authentication (2FA) methods other than SMS.
  • Regularly updating passwords and ensuring they are unique.

Google data shows that only 36% of users regularly update their passwords, leaving the majority at risk.

How hackers exploit passwords

Most attacks involve fake sign-in pages designed to steal login credentials. Some also trick users into sharing 2FA codes or bypass 2FA entirely. Once a password is compromised, hackers can attempt to use it across multiple platforms, putting Amazon, PayPal and other accounts at risk.

Experts recommend creating strong, unique passwords stored in a standalone password manager—not one built into Chrome or other browsers.

Ongoing phishing attempts

According to PC World, although passwords were not leaked in the Salesforce breach, customer and company names were exposed, increasing the risk of phishing. Users have reported scam calls and emails from people impersonating Google staff.

On Reddit, some account holders have already described suspicious emails and spoofed error messages, highlighting new phishing methods circulating online.

How to stay secure

Google urges users to take immediate steps:

  • Change your Gmail password now if you have not done so this year.
  • Add a passkey and always use it as the default method of sign-in.
  • Switch to an authenticator app for 2FA instead of SMS.
  • Avoid signing in via emailed links—always go directly to your Google account and review activity under Security settings.
hackinggmailsecurity breachpasswordsgoogle

Related News

planet birth around infant star HOPS-315
Tech

Astronomers capture earliest moment of planet birth around infant star HOPS-315

More For You

UK mobile games privacy

ICO is setting up a monitoring programme to examine how popular mobile games handle children’s data

iStock

Mobile games face scrutiny as UK regulator steps up children’s privacy checks

Highlights

  • Regulators launch a review of the top 10 mobile games used by children
  • Parents report high concern over data collection, exposure to strangers, and harmful content
  • Move follows earlier action that prompted major platforms to improve protections for young users

ICO launches review of children’s privacy in leading mobile games

The UK’s Information Commissioner’s Office (ICO) is setting up a monitoring programme to examine how popular mobile games handle children’s data, as regulators turn their attention to a sector used daily by millions of young players.

With around 90 percent of children in the UK playing games on phones and tablets, the ICO says it will review 10 of the most widely used mobile games. The assessment focuses on default privacy settings, geolocation controls, targeted advertising, and any additional data practices identified during the review.

Keep ReadingShow less
© Copyright 2025 Garavi Gujarat Publications Ltd & Asian Media Group USA Inc
Contact Us