There’s a new email scam going around, and it’s dangerously convincing.
Hackers are now sending emails that appear to come directly from Google (like no-reply@google.com), asking users for urgent action. These emails look official, include legal-sounding language like subpoenas, and can fool even trained professionals.
What the Scam Looks Like
The email claims to be from Google and may reference a subpoena asking for your Google Account information. It’s written clearly with no obvious red flags—no spelling errors, no poor formatting, and it even gets filed next to real security emails in your inbox.
That’s because hackers found a way to reuse legitimate Google emails without breaking the digital signature that verifies their authenticity.
A Deep Fake… But for Email
This scam uses something called a DKIM replay attack. Without changing the original email, attackers resend it, keeping Google’s signature intact. That means it passes right through most email filters, appearing totally real.
Fake Support Pages with Real Damage
The email includes a link to a “Google Support Case.” That link goes to a page that looks nearly identical to Google’s actual support portal. But it’s fake.
And once you enter your login information, the scammers have what they need to access your account.
One small clue? The link goes to a “sites-google[.]com” page. Real Google alerts don’t use this free web-building platform.
Google’s Response
At first, Google said everything was working as expected. But after pushback, they acknowledged a flaw and are now taking steps to improve protections.
What You Can Do to Stay Safe
Phishing attacks are getting more sophisticated, which is why proactive testing and prevention are more important than ever.
We recommend having Geek To You Technology perform a FREE Advanced Security Assessment.
This helps identify vulnerabilities and ensures your business has the right protections in place before attackers find a way in.
Need to assess your organization’s security?
Geek To You Technology works with businesses across the region to prevent cyberattacks before they happen.
Contact us today to schedule your FREE Advanced Security Assessment.
