Once the user enters their password, attackers gain access to their emails and contact list.
The problem is, the malicious web link is very well-disguised and even includes accounts.google.com in the URL.
Once you complete sign-in, your account has been compromised, Maunder said.
When users enter their Gmail username and password on the page, the data is sent to the attacker.
If the link doesnt match the hyperlinked text, its likely malicious.
While it might look legitimate, Maunder suggests taking a close look at the URL before entering your password.
confirm there is nothing before the hostname accounts.google.com other than https:// and the lock symbol.
you might also enable two-factor authentication to prevent yourself from being affected.
source: www.techworm.net
