--- title: "Hackers Find One More Way to Use Google to Scam You | Phish Protection" description: "At this point, mentioning a new Google attack vector is almost not news anymore, given how many times the company" image: "https://phishprotection.com/og/blog/hackers-find-one-more-way-to-google-to-scam-you.png" canonical: "https://phishprotection.com/blog/hackers-find-one-more-way-to-google-to-scam-you/" --- Quick Answer At this point, mentioning a new \*\*Google attack vector\*\* is almost not news anymore, given how many times the\[ company's services have been exploited\](/blog/phishing-the-good-the-bad-and-the-ugly-of-google/). It's to be expected though. \_Google makes most of its service available free of charge, which means not only do you have free access to it, so do hackers\_. And given these services' widespread adoption, it's not surprising that Google is a frequent target. Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-find-one-more-way-to-google-to-scam-you%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Hackers%20Find%20One%20More%20Way%20to%20Use%20Google%20to%20Scam%20You&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-find-one-more-way-to-google-to-scam-you%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-find-one-more-way-to-google-to-scam-you%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-find-one-more-way-to-google-to-scam-you%2F&title=Hackers%20Find%20One%20More%20Way%20to%20Use%20Google%20to%20Scam%20You "Share on Reddit") [ ](mailto:?subject=Hackers%20Find%20One%20More%20Way%20to%20Use%20Google%20to%20Scam%20You&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fhackers-find-one-more-way-to-google-to-scam-you%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2019/10/phishing-prevention-tips-6210.jpg) At this point, mentioning a new **Google attack vector** is almost not news anymore, given how many times the[ company’s services have been exploited](/blog/phishing-the-good-the-bad-and-the-ugly-of-google/). It’s to be expected though. _Google makes most of its service available free of charge, which means not only do you have free access to it, so do hackers_. And given these services’ widespread adoption, it’s not surprising that Google is a frequent target. The latest exploit takes advantage of[ Google Alerts](https://en.wikipedia.org/wiki/Google%5FAlerts). “Google Alerts is a content change detection and notification service, offered by the search engine company Google. The service sends emails to the user when it finds new results - such as web pages, newspaper articles, blogs, or scientific research - that match the user’s search term(s).” ![Phishing prevention tips](https://media.mailhop.org/phishprotection/images/2019/10/phishing-prevention-tips-6210.jpg) In some ways, this is a perfect attack vector for hackers. People are telling Google what search terms they care about and they are volunteering to have emails sent to them which contain links to pages with those search terms. _All hackers really have to do to take advantage of this situation is to set up a malicious web page with those search terms on it_. And if they choose popular search terms, a lot of people will get those emails. What makes it worse is, victims have their guard down because they are expecting these emails. That’s a form of **social engineering** which is inherent in using Google Alerts as the attack vector. Detailing how this scam works in[ Bleeping Computer](https://www.bleepingcomputer.com/news/security/beware-of-google-alert-links-leading-to-malware-and-scams/), “When a user clicks on one of these alerts, they will then be sent to a page that then redirects them through a series of other pages until they finally land at a fake giveaway page, tech support scam, unwanted extension, or malware installers.” In some ways, this Google Alerts scam doesn’t change anything. _You must protect yourself from malicious links in emails_, whether you received the email voluntarily - like with Google Alerts - or not. And the best way to do that is with cloud-based [email security software](/) with **real-time link click protection** like that offered by[ Phish Protection.](/) ![Phishing attack prevention](https://media.mailhop.org/phishprotection/images/2019/10/phishing-attack-prevention-8112.jpg) Real-time link click protection is the key. With real-time link click protection, whenever you click on a link in an email, before you get redirected to the website, _the scanning software checks out the website to make sure it’s safe_. And if it’s not, it protects you by preventing you from visiting that website. Whether you use Google Alerts or not, the best way to stay safe from **phishing emails** is to use Phish Protection with[ Advanced Threat Defense](/products/advanced-threat-defense/). It sets up in 10 minutes, cost pennies a day per employee and comes with live 24/7 customer support. ## Topics [ Phishing ](/tags/phishing/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Foundational 5m 0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[ Foundational 4m 13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[ Foundational 4m All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[ Foundational 4m 2021 Phishing Trends You Need To Be Wary Of Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Hackers Find One More Way to Use Google to Scam You","description":"At this point, mentioning a new Google attack vector is almost not news anymore, given how many times the company's services have been exploited.","url":"https://phishprotection.com/blog/hackers-find-one-more-way-to-google-to-scam-you/","datePublished":"2019-10-03T12:09:05.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2019-10-03T12:09:05.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/hackers-find-one-more-way-to-google-to-scam-you/"},"articleSection":"foundational","keywords":"Phishing","wordCount":447,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2019/10/phishing-prevention-tips-6210.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"Hackers Find One More Way to Use Google to Scam You","item":"https://phishprotection.com/blog/hackers-find-one-more-way-to-google-to-scam-you/"}]} ```