Google issues clear warning to anyone who uses Gmail

A warning has been issued to Gmail users about the security of their accounts, urging hundreds to change their passwords.

It comes after worrying reports began circulating last week that 183 million passwords were stolen, as per MailOnline, inciting mass panic around the world.

However, Forbes has since cleared up that despite the multiple scary reports, this is actually not the case, but Google has warned that compromised security credentials are giving hackers access to accounts.

The Google official Twitter account posted a message on October 27 trying to squash some of the misinformation and stop the false reports.

They wrote: "Reports of a “Gmail security breach impacting millions of users” are false. Gmail’s defences are strong, and users remain protected.

"The inaccurate reports are stemming from a misunderstanding of infostealer databases, which routinely compile various credential theft activity occurring across the web. It’s not reflective of a new attack aimed at any one person, tool, or platform."

However, just because the data breach is not new or aimed specifically doesn't mean it’s not dangerous or something to watch out for.

The company added: "Users can protect themselves from credential theft by turning on two-step verification and adopting passkeys as a stronger and safer alternative to passwords, and resetting passwords when they are found in large batches like this.

"Gmail takes action when we spot large batches of open credentials, helping users reset passwords and resecure accounts."

Two-step verification simply adds another layer of security when logging in.

If you sign in with a password, you’ll complete a second step, usually on your phone such as tapping a sign-in prompt or entering a code you receive as a text.

It's important to make sure your password is strong and unique and as Google have advised, make sure you have two-step verification or a passkey for maximum protection.

Google warned in July that 'attackers are intensifying their phishing and credential theft methods, which drive 37% of successful intrusions'.

The company said they've seen 'an exponential rise in cookie and authentication token theft as a preferred method for attackers, with an 84% increase in infostealers'.

They advise: "Passkeys provide the strongest protection. They can never be guessed or reused, helping keep your private information secure against attackers.

"Passkeys provide the strongest protection against threats like phishing. Once you create a passkey, you can use it to easily sign in to your Google Account and "unlike passwords, passkeys can only exist on your devices. They can’t be written down or accidentally given to a bad actor."

If you're not sure what we're talking about, passkeys are essentially a way to log in without a password using your phone or another supported device to prove that you are who you say you are.

And as per Dashline, they're on the rise, becoming more mainstream as more people realise how it improves security over a traditional password.

So, if you do anything today, make sure you have one!