|Gmail Mobile verification Loopholes|
Client: My Gmail account has been hacked.
Me (Lokesh): Have you gotten any emails?
Client: Yes, I get a lot of emails on a daily basis.
Me: I mean any suspicious or unsolicited, or Lottery Prize emails.
Client: Yes, lots of emails like that, but I never open any, and I haven’t opened any links from my email.
Me: Okay. It’s nice that you are aware of those scams. Maybe you installed a new application or software on your PC or got your hands on a hack tool.
Client: No, I haven’t installed anything in the last few weeks.
Me: Okay. Did you sign up for a new website.
Client: Yes, I signed on one website yesterday and after that I became unable to login to my account. But I don’t use the same password there that I use for my Gmail.
Me: Okay, how did you find this site? Did you find it in a browser or did someone refer you?
Client: Yeah, a person with an email ID like email@example.com told me about that site. But today that site is also down.
Me: What was the website’s name.
Client: Something like “make money by displaying ads on your website.”
Me: Okay. Do you know the person with the email “firstname.lastname@example.org.” Is he a friends of your’s?
Client: No, I just got his Gtalk invitation, a day back. But I have talked with him personally and he told me I would get 50% of his Google Adsense revenue for every article that I wrote on his website.
Me: Okay, did he ask anything special, like a registration or mobile verification code or anything similar?
Client: Yes, he told me that I would get a verification code from Google on my mobile phone, that I needed to provide him the code so that he could attach it with my Google Adsense account.
Me: Can you forward me that message?
“Dear Gmail User(Name),Your Gmail Password reset verification code is 123456″
“Dear user,You have requested a password reset for your Google account (email). Your verification code is 123456″
Dear user(name),You have requested a Password Reset verification code for account(email). Your code is 123456″