Gmail Users in Panic: New 4-Step Scam Steals All Data

By Telegraf March 17, 2026

Cybersecurity experts have issued an urgent warning about a new scam targeting Gmail users through a website that faithfully mimics Google's design. Attackers use a cunning four-step method to convince victims to install malicious software under the guise of account protection. Instead of increased security, this tool silently collects your passwords, GPS location, and private contacts without your knowledge.

Gmail Users in Panic: New 4-Step Scam Steals All Data Cybersecurity experts warn of a new four-step scam targeting Gmail users, which mimics Google’s design to trick victims into installing malicious software. This malware steals passwords, GPS location, and contacts, and can even bypass two-factor authentication by intercepting verification codes. The scam uses deceptive websites and can leverage AI for voice phishing, exploiting legitimate services like Google Tasks to evade spam filters.

A new four-step scam is targeting Gmail users by replicating Google’s website design.
Attackers persuade victims to install malicious software disguised as account protection.
The malware steals passwords, GPS location, and private contacts.
The scam bypasses common security warnings and can intercept two-factor authentication codes.
Recent attacks in early 2026 have used AI for convincing voice phishing, impersonating Google support.
Scammers exploit legitimate services like Google Tasks to bypass spam filters.
Users are urged to be cautious and not install apps from unverified messages.

Reference: https://serbia.layer3.press/articles/daae2acd-7ece-4103-a761-3b89ecafddaf