The issue of What can be used for us will be used against us. I.e. We want to use the internet – it will be used to attack us.
So we want to have email – it will be used against us.
There are some technical configurations we can do to help prevent scam attacks.
Google decided to update some of the email rules and tools. with new security alerts…
So guess what happened? Yes you guessed it the scammers are making their email scams look just like Google alerts of course. I found some Google spam explanations and ZDnet explanation post.
You know it is mainstream when Forbes has a story…
Excerpt:
Beware This Gmail Security Alert — No Matter How Real It Appears
Wouldn’t it be great if account security were straightforward and easy to accomplish? When you get an email from Google, a security alert no less, that passes Google’s own email authentication protections, you’d think it was trustworthy, right? Wrong, very wrong indeed, at least for now.
An April 16 posting on the X social media platform first alerted us to the threat that exploits trust in Google’s own protections and platforms to execute a sophisticated hack attack. That post explained how the user, a software developer called Nick Johnson, had received a security alert email from Google informing them that a “subpoena was served on Google LLC requiring us to produce a copy of your Google Account content.” The emails went on to state that Johnson could examine the details or “take measures to submit a protest,” by following the included link to a Google support page. OK, so it’s a phishing email, nothing unusual about that, right? Wrong again. Not only did this threat come in an email that was validated and signed by Google itself, it was sent from a “no-reply@google.com” address, it passed the strict DomainKeys Identified Mail authentication checks that Gmail employs, and it was sorted by Gmail into “the same conversation as other, legitimate security alerts,” Johnson said.