--- title: "You’ll Never Guess What Technique Cyberspies Use to Hack into Google | Phish Protection" description: "You’ll Never Guess What Technique Cyberspies Use to Hack into Google: Government-backed cyberspies are always looking for a way to gain access to." image: "https://phishprotection.com/og/blog/youll-never-guess-what-technique-cyberspies-use-to-hack-into-google.png" canonical: "https://phishprotection.com/blog/youll-never-guess-what-technique-cyberspies-use-to-hack-into-google/" --- Quick Answer So, what technique do you suppose these cyberspies prefer when it comes to hacking someone's Google account?\_ Is it a brute force password attack? How about a SQL injection attack? Man-in-the-middle attack? Nope. None of them.\_ Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fyoull-never-guess-what-technique-cyberspies-use-to-hack-into-google%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=You%26%238217%3Bll%20Never%20Guess%20What%20Technique%20Cyberspies%20Use%20to%20Hack%20into%20Google&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fyoull-never-guess-what-technique-cyberspies-use-to-hack-into-google%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fyoull-never-guess-what-technique-cyberspies-use-to-hack-into-google%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fyoull-never-guess-what-technique-cyberspies-use-to-hack-into-google%2F&title=You%26%238217%3Bll%20Never%20Guess%20What%20Technique%20Cyberspies%20Use%20to%20Hack%20into%20Google "Share on Reddit") [ ](mailto:?subject=You%26%238217%3Bll%20Never%20Guess%20What%20Technique%20Cyberspies%20Use%20to%20Hack%20into%20Google&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fyoull-never-guess-what-technique-cyberspies-use-to-hack-into-google%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2019/12/phishing-attack-prevention-2279.jpg) _Government-backed cyberspies are always looking for a way to gain access to people’s sensitive information_. One of their favorite targets is their Google account, since so many people store information there. And even if they don’t, a Google account can be a critical access point to sensitive information stored elsewhere. So, what technique do you suppose these cyberspies prefer when it comes to hacking someone’s Google account?\_ Is it a brute force password attack? How about a SQL injection attack? Man-in-the-middle attack? Nope. None of them.\_ When a cyberspy wants to gain access to a Google account, they use the trusted old **phishing attack**.[ More than 90% of the time](https://www.pcmag.com/news/372225/google-detects-steady-stream-of-phishing-attacks-from-cybers). That’s right. When the most sophisticated hackers in the world want access to your Google account, they’ll send you a phishing email because they know it works. ![Phishing attack prevention](https://media.mailhop.org/phishprotection/images/2019/12/phishing-attack-prevention-2279.jpg) How bad is this problem? From PC Magazine, “_From July to September, the company sent out more than 12,000 warnings to users across the globe that **government-backed attackers** were trying to break into their Google accounts through phishing scams_.” ### What countries are most at risk for these kinds of attacks? _Of course the US, but also Pakistan, South Korea, and Vietnam._ _The surprising aspect of these attacks is how ordinary they are_. The attackers set up a fake Google page and suggest the email recipients do a password reset. By itself, there’s nothing particularly clever about this approach. However, what does make it challenging, “is how it can bypass Google’s two-factor authentication, a safeguard that requires anyone logging on to also supply a one-time passcode generated from their smartphone.” “In total, Google has said in the past it encounters about **100 million phishing messages per day**. _So the attacks from the state-sponsored hackers only represent a small slice_.” The good news, if there is any, is that these state-sponsored cyberattacks are easily thwarted by modern[ phishing protection software](/) like that from Phish Protection. ![Protection from phishing](https://media.mailhop.org/phishprotection/images/2019/12/protection-from-phishing-5697.jpg) Modern [phishing protection](/) software doesn’t care where the phishing email came from or who’s behind it. If it contains malicious content, or if it contains a link to a malicious website, phishing protection software with **real-time link click protection** keeps you from falling victim to these scams. _Cloud-based Phish Protection requires no hardware, software or maintenance_. It sets up in 10 minutes, comes with 24/7 live technical support and only costs **pennies per users** per month. Put an end to state-sponsored cyber attacks by letting [Phish Protection](/products/advanced-threat-defense/) put them out of business. ## Topics [ Phishing ](/tags/phishing/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Foundational 5m 0ktapus, Okta Breach Helps Attackers Launch Sophisticated Supply Chain Attacks Sep 5, 2022 ](/blog/0ktapus-okta-breach-helps-attackers-launch-sophisticated-supply-chain-attacks/)[ Foundational 4m 13 Spear Phishing Attacks Examples To Justify Investment For Phishing Prevention Solutions In Your Organization Aug 1, 2019 ](/blog/13-spear-phishing-attacks-examples-to-justify-investment-for-phishing-prevention-solutions-in-your-organization/)[ Foundational 4m All 14 centers of Kettering Health were affected by a massive ransomware attack, Major outage in the Ohio medical center May 23, 2025 ](/blog/14-centers-of-kettering-health-were-affected-by-massive-ransomware-attack-in-ohio-medical-center/)[ Foundational 4m 2021 Phishing Trends You Need To Be Wary Of Aug 2, 2021 ](/blog/2021-phishing-trends-to-be-wary-of/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"You’ll Never Guess What Technique Cyberspies Use to Hack into Google","description":"You’ll Never Guess What Technique Cyberspies Use to Hack into Google: Government-backed cyberspies are always looking for a way to gain access to.","url":"https://phishprotection.com/blog/youll-never-guess-what-technique-cyberspies-use-to-hack-into-google/","datePublished":"2019-12-04T10:10:39.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2019-12-04T10:10:39.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/youll-never-guess-what-technique-cyberspies-use-to-hack-into-google/"},"articleSection":"foundational","keywords":"Phishing","wordCount":424,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2019/12/phishing-attack-prevention-2279.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Foundational","item":"https://phishprotection.com/foundational/"},{"@type":"ListItem","position":4,"name":"You’ll Never Guess What Technique Cyberspies Use to Hack into Google","item":"https://phishprotection.com/blog/youll-never-guess-what-technique-cyberspies-use-to-hack-into-google/"}]} ```