Google Sues Scammers Who Trick People Using Fake AI Chatbot Links
Scammers are using Google's AI name to create fake websites and text scams, tricking people into giving away personal information. Google is fighting back in court.
Source
Schneier on Security
Original headline: Google Is Suing Chinese Scammers Who Are Using Gemini
Plain-English summary by GetCyberRight. Read the full report at the source above.
Google has filed a lawsuit against a Chinese scam operation called Outsider Enterprise. According to Google's legal filing, this group sells scam kits to criminals through the messaging app Telegram. These kits help people set up fake websites and text message campaigns that pretend to be from Google's AI chatbot, Gemini.
The service is called phishing as a service because it provides all the tools someone needs to trick victims, even if they have no technical knowledge. The group reportedly provides step-by-step instructions through its Telegram channels. Anyone could be affected by these scams.
Stay one step ahead of scammers
Weekly cybersecurity briefings for families. No spam, just the threats that matter and what to do about them.
The fake websites and text messages are designed to look like they come from Google. When you click on links in these scam messages or visit these fake sites, you might be asked to enter personal information like passwords, credit card numbers, or other sensitive data.
The scammers are using Google's Gemini name because it's recognizable and people trust it. Once they have your information, they can steal your identity, access your accounts, or make fraudulent purchases.
- Never click links in unexpected text messages, even if they mention Google, Gemini, or other companies you recognize.
- If you want to use Google's Gemini AI, type the address directly into your web browser or use Google's official app. Don't rely on links from texts or emails.
- Check website addresses carefully. Scam sites often use addresses that look similar to real ones but have slight misspellings or extra words.
- If you already clicked a suspicious link and entered information, change your passwords immediately on all important accounts.
- Enable two-factor authentication on your Google account and other important accounts. The broader lesson here is to be skeptical of unexpected messages, even when they use familiar company names. Scammers constantly use popular services and new technology trends to make their fakes seem believable. Make it a rule never to click links in unsolicited messages. Instead, go directly to websites by typing the address yourself. Teach your children and older family members this same habit. When something seems urgent or too good to be true, that's often a sign it's a scam. Take a moment to verify before you click or share any personal information.
Curated from trusted cybersecurity sources by GetCyberRight
Source: Schneier on SecurityStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles
Major Accenture Data Breach: What It Means for Your Personal Information
Hackers stole 35GB of data from global consulting giant Accenture. Here's what families need to know and do to protect themselves.
3 min readAccenture Breach: What It Means When Cybersecurity Advisors Get Hacked
A major consulting firm that advises companies on security just lost 35GB of source code to hackers. Here's why this matters for your family's digital safety.
3 min read
What Russian Hacker Arrests Mean for Your Online Safety
Spanish police arrested someone connected to Russian hacking groups. Here is what these international investigations mean for protecting your family online.
2 min read
Russian Hacker Arrested in Spain: What Hacktivist Campaigns Mean for You
Spanish authorities arrested a suspected hacker linked to Russian groups attacking websites. While most families aren't direct targets, these attacks can disrupt services you use.
2 min read