Search ARN News Centre

Google probes after scammers exploit new Gmail 'blue-tick' feature

Monday, 5 June 2023 11:26

By ARN News Staff

File picture

Gmail faces a significant setback as hackers have found a way to exploit one of its recently introduced security features.

The Gmail blue checkmark system, designed to assist users in identifying verified companies and organisations, is now being manipulated by scammers to deceive unsuspecting users.

Launched in May, the checkmark system displays a blue tick next to emails from verified sources, aiming to enhance user confidence and prevent falling victim to impersonation scams. However, cybersecurity engineer Chris Plummer has uncovered a vulnerability that allows scammers to deceive Gmail into recognising their fake brands as legitimate ones.

Plummer, who initially discovered the issue, brought it to the attention of Google, only to face dismissal of his findings. It was only after Plummer's tweets about the matter gained viral attention that Google acknowledged the problem and issued a statement.

In their response to Plummer, Google stated, "After taking a closer look, we realised that this indeed doesn't seem like a generic SPF vulnerability. Thus, we are reopening this, and the appropriate team is taking a closer look at what is going on. We apologise again for the confusion, and we understand our initial response might have been frustrating.

"Thank you so much for pressing on for us to take a closer look at this! We'll keep you posted with our assessment and the direction that this issue takes."

Recognising the gravity of the situation, Google has now classified the flaw as a 'P1' (top priority) fix, which is currently in progress. The tech giant is actively working to address the vulnerability and provide users with a secure email experience once again.

Until Google implements a fix, the Gmail checkmark system remains compromised, leaving users vulnerable to scams and fraudulent activities. 

In the meantime, users are advised to exercise scepticism and adopt additional measures to safeguard their personal information and online security.

Share

More from Business

  • DoH awards research projects over AED19 million to transform AD healthcare

    The Department of Health – Abu Dhabi (DoH), in partnership with the Authority of Social Contribution - Ma’an, has awarded over AED19 million in grants to support advancements in groundbreaking fields such as cell and gene therapies, precision medicine, and advanced cancer treatments.

  • UAE, Italy sign MoU to combat financial, economic crimes

    The UAE General Secretariat of the National Anti-Money Laundering and Combatting Financing of Terrorism and Financing of Illegal Organisations Committee (GS-NAMLCFTC) and the Italian Guardia di Finanza on Friday signed a Memorandum of Understanding for a strategic partnership in the fight against the emerging financial crime threats.

  • Putin says there is no time to sign new Ukraine gas transit deal this year

    President Vladimir Putin said on Thursday there was no time left this year to sign a new Ukrainian gas transit deal, and laid the blame firmly on Ukraine for refusing to extend the agreement that brings gas to Slovakia, the Czech Republic and Austria.

  • New tax programme for government employees

    Dubai Finance (DOF) and PwC Academy, the talent and skills development arm of PwC Middle East, have announced a strategic partnership to introduce a new Tax Professional Certificate aimed at tax professionals working within Dubai’s government entities.

  • Brazil says workers at BYD construction site victims of human trafficking

    Chinese workers found at a construction site for a factory owned by China's electric vehicle producer BYD in Brazil's Bahia state are victims of human trafficking, Brazilian labor authorities said on Thursday.

Latest Local News

News

Quick Links

Get the app

  • Available on the App Store
  • Available on Google Play

© 2024 ARN and Aiir. All Rights Reserved.