Google has introduce a Chrome extension called Password Alert that will warn you any time you try to use your Google password at a non-Google site. This is a great way to protect yourself and your Gmail account from phishing attacks that employ a fake cloned Gmail login page in an attempt to get your Gmail user ID and password. This will work for all your Google accounts, including Analytics, AdWords, Voice, Blogger, Google+, Google Drive, and Google Apps.
Google says, “Password Alert helps protect against phishing attacks. If you enter your Gmail or Google for Work password into anywhere other than accounts.google.com, you’ll receive an alert, so you can change your password if needed. Password Alert also tries to detect fake Google sign-in pages to alert you before you’ve typed in your password. To do so, Password Alert checks the HTML of each page you visit to see if it’s impersonating a Google sign-in page.”
You will need to be using a password for Google that you do not share with any other sites because Password Alert will warn you about using your Google password on legitimate non-Google sites, as well as the expected fake malicious clone sites. If you are a regular reader of WyzGuys Tech Talk, you will have stopped using one password on multiple sites some time ago. If you need to do it, you should create a new unique password for you Google accounts for this system to work properly.
Share
MAY
About the Author:
I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com