Millions of Gmail users warned over scam exploiting potential bug in Google feature
The little blue tick isn’t just for Twitter, the verification checkmark was also rolled out by Gmail in 2021 — and it hasn’t taken scammers long to exploit the process. Cyber threat actors have managed to create verified accounts by impersonating real Business es, making it even harder to detect email scams sent directly to Gmail inboxes. When you hover over a sender’s business logo and blue checkmark in your inbox, a small box will pop up reading: “The sender of this email has verified that they own (business domain URL) and the logo in the profile image.” Watch the latest News on Channel 7 or stream for free on 7plus >> But look closely at that URL because an illegitimate domain name could be an indication that it’s not actually the trusted sender who they say they are. Cybersecurity engineer Chris Plummer spotted an example of this in an email from a scammer impersonating American postal service UPS last Thursday and flagged the flaw with Google. “There is most certainly a bu...