Google warns 2.5B Gmail users to update passwords after data breach of one of its databases.https://nypost.com/2025/08/27/business/google-warns-2-5-billion-gmail-users-to-update-passwords-after-hackers-complete-successful-intrusions/
>>106427607I don't see anything on my inbox
>>106427633me neither.but that's because i'm not stupid enough to use gmail.
>>106427607How can google out of all corposlop be hacked? One would assume they have high security
>tfw using yahoo mail
>>106427668They hired Indians.
>>106427696OhDeserved then
>>106427607the breach only affects retards who input their passwords into indian phishing sites, which is more than you think.
>>106427607>social engineering attacks>This hack largely compromised publicly available datawow it's fucking nothing
>>106427607>On August 28, 2025, our investigation confirmed that the actor also compromised OAuth tokens for the "Drift Email" integration. On August 9, 2025, a threat actor used these tokens to access email from a very small number of Google Workspace accounts. The only accounts that were potentially accessed were those that had been specifically configured to integrate with Salesloft Drift; the actor would not have been able to access any other accounts on a customer's Workspace domain.
>>106427706Lots, and lots of Indians. Some might even say Infinity Indians. It’s a situation where it’s up in the air whether these breaches are malice or incompetence.
>>106427668some dumb diversity hire whore or brownoid they hired for pennies simped for some spy and accidentally leaked shitliterally every time
>Around 2.5 billion users were urged to reset their passwords and tighten their security after the contact information of small and medium sized businesses was accessed. The information was publicly available, typically names and contact details, but this still leaves some vulnerable to phishing attacks.>Google has since notified those affected by the incident via email - but those whose data was compromised should be on the lookout for social engineering and extortion attacks. These incidents typically involve an email or call to employees of victim organizations demanding large sums of bitcoin.Fuck off OP
>>106427607no problem. i use a PASSKEY.
>>106427733So specifically "small" and "medium" "businesses"? What's the difference between a "small business" account and some fuck who uses gmail as their professional contact platform as a contractor, that's otherwise indistinguishable from a personal email?
>>106427726>>106427859Oh I guess I'm supposed to read threads from the top down, not start at the bottom. gomen.
>>106427607This is just reporting the same old hack that didn't include passwords.
I got one from BigCommerce today but not from Google
>socially engineered attacksOkay, so retards giving up their info. Why would I care?
>>106427607old tabloid fake news
Wouldnt they be encrypted?
At some point I marked Google as spam in Gmail, because they were sending me spam, so now important emails from Google silently go to the Spam folder and get deleted in like 30 days, or at least I think this is the case. There's no way to edit my "spam" list so I have to catch a Google email in there so I can mark it as not spam? I didn't care before because I had a university email I used for 20 years because they said they would host it forever, but last year they ended email hosting for non-students. The lesson is trust no one.
>t. CIA/NSA/Mossad has been hackedGive me a fucking break
>>106427668Curry
>>106428413Ultimate levels of based.
>>106427607imagine having a zoggle account, lol, yandex overlords won again
>>106428974I know right. I use Outlook btw.
>>106427607>Google has revealed that the recent wave of attacks targeting Salesforce instances via Salesloft Drift is much broader in scope than previously thought, stating it impacts all integrations.>"We now advise all Salesloft Drift customers to treat any and all authentication tokens stored in or connected to the Drift platform as potentially compromised," Google Threat Intelligence Group (GTIG) and Mandiant said in an updated advisory.>"The only accounts that were potentially accessed were those that had been specifically configured to integrate with Salesloft; the actor would not have been able to access any other accounts on a customer's Workspace domain," Google added.>Following the discovery, Google said it notified impacted users, revoked the specific OAuth tokens granted to the Drift Email application, and disabled the integration functionality between Google Workspace and Salesloft Drift amid ongoing investigation into the incident.https://thehackernews.com/2025/08/google-warns-salesloft-oauth-breach.html>Google is advising users of the Salesloft Drift AI chat agent to consider all security tokens connected to the platform compromised following the discovery that unknown attackers used some of the credentials to access email from Google Workspace accounts.>In response, Google has revoked the tokens that were used in the breaches and disabled integration between the Salesloft Drift agent and all Workspace accounts as it investigates further. The company has also notified all affected account holders of the compromise.https://arstechnica.com/security/2025/08/google-warns-that-mass-data-theft-hitting-salesloft-ai-agent-has-grown-bigger/Tabloid: ALL 2.5 BILLION GMAIL ACCOUNTS HACKED!!1
Does anyone else have a feeling of dread that one day there will be a MAJOR hack that gives out tons of personal information? Like every discord message being leaked, or a full list of IPs linked to individual identities for every post made on 4chan? All that data exists on government and corporate hard drives, it's just a matter of someone "forgetting" to update some insecure library and getting pwned by Chang.
>>106429165Well, corporate data quality is slipping. Push back the date of first successful mind upload a century or half century at minimum.>>106429392my primary work is global security. I actively survey threats to consumer markets, and exercise specific work to guarantee DHCP addressing for privacy. yes it is a quick hack on top of the issue, apparently, not a better solution @=t
>>106427607>salesforce dataThis hack largely compromised publicly available data, like contact details for small- and medium-size businesses, but the hacking method could be used for more serious attacks in the future.>In June, it warned that bad actors were targeting people through social engineering attacks – posing as IT support staffers, which was “particularly effective in tricking employees,” Google said.social engineering with fake login websites, IT calls, auth codesDont get caught. Its not a real leak, but social engineering can be effective with dumb data + right people
I have MFA, don't care zzzz
>>106427607>2025>not having 2FA on everything>not having unique passwords per-serviceNGMI
>>106429712>2FAstill not buying a (((smartphone)))
>>106430028you can have a topt client on desktop
>>106427633Same. Did they notify affected people via email?
I literally just changed my password, so idc
>>106427607G/incels can't read.
>>106430028Yeah, you can't buy it without money, nik gurr.
>>106427607>breakingIdiot
>>106430184Its got nothing do to with incels and everything to do with demoralising Joos
>>106427607I upgraded a long time ago.
>>106430210>cia mailL O L
>>106430210>i upgraded to a honeypot a long time agotopkek
op is fake and gay
>>106427696Worse, they hired Russians who work for FSB and GRU
>>106427668social hacking. sexy girl on tinder asked a pajeet to put up a QR code on the notice board in the engineering office and he done it
>>106427668how does google NOT get hacked? they're hiring thousands of literally whos from all over the planet
>>106430028Yeah, this seems like a scam to (1) sell people something or(2) collect more information about peopleUnfortunately they deleted the meager credibility they have left.
>>106430210> protonAt least you know it's compromised already.Probably what we should expect from gmail.
>>106427607>ignore the fact that passwords means shit in the age of MFA were every normie nigger is using by default oh no. anyway
>>106427607>This hack largely compromised publicly available data, like contact details for small- and medium-size businesses, but the hacking method could be used for more serious attacks in the future.not my problem
google and mossad already literally read my spam mail. why should i care if some nerd does too? i dont think ive gotten a real email in 10 years
>>106427668How can incels out of all retards never read the fucking article?
>>106430997>sexy girlNo.>sexy white girl from russiaftfy
>>106431082zero trust. look it up.
>>106427607Exchangechads we win again
>>106430028Who cares, you're unemployed
>>106430218>>106430684Proton is more private than Google. Now you're pedophiles so of course it's not enough for you
>>106427607>nypost
>>106427733How is it possible that "2.5 billion" users were urged to do this (I'm surprised there are even that many gmail addresses) and not a single one is to be found?
>>106427633>>106430158
I use my fingerprint to enter gmailcheckmate hackers
>>106427607fuck your garbage clickbait thread you dumb darkie. the only thing that leaked is the jizz out of your asshole.
>>106427652you're stupid enough to do what then, fren?
>>106427607what is THE email provider that won't fuck you in the ass?
>>106427607Fake news. NSA/Gmail is as secure as it gets.
>>106427678This is unironically the best way to risk losing access to your email account forever
>>106427607>ALL GMAIL PASSWORDS HACKED/LEAKED>Google has warned most of its 2.5 billion Gmail users to update their passwords and strengthen their account security as password hackers have carried out a significant amount of “successful intrusions.”why do you faggots lie so much? I wish retards like you could be punched through the internet.
>>106427607>google: "we want to block apps we dont like">everyone: "haha no">google: 8|>google: >8|>google: *invents a lie of how everyone is totally being hacked you guys*>google, circa two months from now: "see this is why we need to lock android users out of their own phones tee-hee :3c"
>>106433019I use my fingerprint to enter your mom's asshole.
>>106433986could you explain further? I have one of my email accounts running on yahoo.
>>106434947Yahoo was one day like>uhm, sweaty, uhhh, I'm not letting you into your own mailbox even though you know the password, please verify yourself>ok how do I verify myself>uuuuuuuuuhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhTons of people lost their yahoo accounts this way, including myself.
>>106435136So I unironically recommend moving away from yahoo ASAP.
>>106433011I didn't get shit, where the fuck is my warning?You said there would be warning, google man.
>>106427607>nypostThis where we're at now? What's next, tech news from dailymail?You're fucking embarrassing.
>>106435157Oh shut the fuck up.
>>106435143Short of running my own email server are there any good providers in the year of our lord 2025?
>>106435148yeah I didn't get any warning too
>>106435184Gmail. It just works, and there are basically no alternatives.Running your own server is a horrible idea if you need reliability.
>>106435148>>106435214They only notified the chosen people.
>>106435177Hang out somewhere else, shitbag. You have no business being here.
>>106427607Who the fuck doesn't use 2 factor unless its a throw away account.
>>106427678your actually crazy and I know people using hotmail still.
>>1064358902fa is botnet
>>106427607...all of them?
>>106435714What the fuck are you babbling about, scum?
>>106429392I think the closest thing to that that probably will happen is the eventually decryption of all historic data encrypted with non-quantum encryption.Think about how much data someone could be sitting on that they can't decrypt now but will be able to in the future.I hope that point in time is far enough away that the data they hold is no longer particularly useful or relevant.
>>106430028You don't need a smartphone to set up TOTP my friend, an offline password manager will do it
>>106427607So nobody in this thread read the link? Google was not compromised in any fashion.
>>106429712>>not having 2FA on everythingFreedom vs Law Enforcement fighting Obamas, Bidens jihadiesRemembeer when Berlin opened its international airport and real google removed 2FA from all its products?>preset captcha
>>106438442>yes goy just set up your phone as a single point of failure. what could possibly go wrong2FA is a meme. it only exists to save corpos money because they keep getting hammered with a gorillion login attempts per picosecond
>>106434947>>106435136Happened to me too
>>106435890Your meme auth method is less secure than a +18 characters passphrase
>>106438430it was a salesforce hack:https://cloud.google.com/blog/topics/threat-intelligence/voice-phishing-data-extortionhttps://www.forbes.com/sites/daveywinder/2025/08/09/google-confirms-it-has-been-hacked---user-data-stolen/but it didn't affect user accounts beyond (apparently) some customer data that is being used to scam users
anyone remember when gmail allowed you to type your password "close enough"? that was wild
no story on hn with 700+ upvotes = nothing happened
>>106439635Did gmail ever do that? No, I don't remember anything like that.The only site I ever heard of that did that was Facebook.
Not my problem. Won't be updating any of my password.
>>106427668saaaar pls understand
>>106439635I believe you're referring to a feature called "Typo-tolerant password." It was an experimental feature in Gmail Labs around 2008 or so. The idea was that if you made a minor typo in your password, like a single incorrect letter or a transposed character, it would still let you log in. It was definitely an interesting concept, but it was also a bit controversial from a security standpoint, and I don't think it ever made it into the main version of Gmail. It was a fascinating glimpse into a different approach to user authentication, though.
>>106427607>more and more connected services are getting hacked so all gmail users should update their passwords>ZOMG ALL GMAIL PASSWORDS LEAKED
Gonna have to check my stuff
