Select Language:
A recent issue involves potentially malicious Google Ads that are crafted to steal login information for various platforms, including Google accounts. When users search for “my business,” which is a common way to access Google Business Profile accounts, they might be shown ads that look legitimate but are actually designed to hijack login credentials.
This scam was identified by Dan Foland on a social media platform, where he shared a detailed walkthrough of how the attack works and provided screenshots to illustrate the process. The attack is straightforward: after searching for “my business,” a user might click on a suspicious ad that appears to be from Google. Once clicked, it redirects to a fake login page that closely resembles the real Google login screen.
The fake login page is convincing enough to trick users into entering their email and password. If an individual proceeds and inputs their credentials, the scammers can immediately gain access to their account, potentially compromising sensitive information like files and personal data.
Dan documented that even with multiple browsers and attempts, the scam persisted. A typical scenario involves a pop-up that mimics Google’s login page; however, the email address used in the scam is fake, and the form would normally stop the user before submitting if it were legitimate. Instead, inputting the login details on the fake page provides scammers with unrestricted access.
The key takeaway is to avoid clicking on suspicious ads when conducting searches for business management profiles. Instead, directly visit the official website or use trusted bookmarks to reach your account, minimizing the risk of falling victim to these types of scams.
ChatGPT
Perplexity
Gemini AI
Grok AI
