When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.

As noted by Johnson, it even appears as a legitimate security alert.

From here, scammers are likely to steal login credentials and take over a user’s account.

Screenshot of fake Google support page used by scammers

Screenshot of fake support page viaNick Johnson on X

How did scammers fake a real Google email?

So, how was this phishing email able to get signed off by Google and use its official email?

Another outlier is the email from the sender, which was signed by “accounts.google.com.”

A fishing hook resting on a laptop keyboard.

The attackers then grant the OAuth app access to the Google account, which is signed by Google itself.

From there, the phishing message is forwarded to victims, tricking anyone into thinking it’sreallyfrom Google.

However, there are always methods to avoid malicious emails.

A man filing his taxes electronically on a laptop

Another sign is spotting any misspellings of names in email addresses or website links.

However, something was slightly off seeing as the “mailed-by” field was forwarded by “privateemail.com.”

If an email seems suspicious, always look for inconsistencies.

MacBook Pro 2023

A hacker typing quickly on a keyboard

Hooded cybercriminal sitting with laptop surround by hooks

A hacker typing on a computer

Green skull on smartphone screen.

Galaxy S25 Plus held in the hand.

iPhone 16 Pro shown held in hand

A woman�s hands holding a smartphone with a lock symbol on it, in front of a laptop that also has a lock symbol on it.

Diego Luna (as Cassian Andor) in Ferrix in ANDOR

Nintendo Switch 2 London event hands-on images

Kit Connor and Joe Locke in Heartstopper season 3

Jacob Elordi as Dorrigo Evans (1940s) and Odessa Young as Amy Mulvaney in "The Narrow Road to the Deep North" coming soon to Prime Video

(L-R) Denzel Washington as Bobby Trench and Mark Wahlberg as Michael Stigman in "2 Guns"