Never Answer These Calls On Your Smartphone, Google Warns
Google's Threat Intelligence Group has issued a new warning about a dangerous cyberattack group known only as UNC6040, which is succeeding in stealing data, including your credentials, by getting victims to answer a call on their smartphone. There are no vulnerabilities to exploit, unless you include yourself: these attackers 'abuse end-user trust,' a Google spokesperson said, adding that the UNC6040 campaign 'began months ago and remains active.' Here's what you need to know and do. TL;DR: Don't answer that call, and if you do, don't act upon it.
If you still need me to warn you about the growing threat from AI-powered cyberattacks, particularly those involving calls to your smartphone — regardless of whether it's an Android or iPhone — then you really haven't been paying attention. It's this lack of attention, on the broadest global cross-industry scale, that has left attackers emboldened and allowed the 'vishing' threat to evolve and become ever-increasingly more dangerous.
If you won't listen to me, perhaps you'll take notice of the cybersecurity and hacking experts who form the Google Threat Intelligence Group. A June 4 posting by GTIG, which has a motto of providing visibility and context on the threats that matter most, has detailed how it's been tracking a threat group known only as UNC6040. This group is financially motivated and very dangerous indeed. 'UNC6040's operators impersonate IT support via phone,' the GTIG report stated, 'tricking employees into installing modified (not authorized by Salesforce) Salesforce connected apps, often Data Loader variants.' The payload? Access to sensitive data and onward lateral movement to other cloud services beyond the original intrusion for the UNC67040 hackers.
Google's threat intelligence analysts have designated UNC6040 as opportunistic attackers, and the broad spectrum of that opportunity has been seen across hospitality, retail and education in the U.S. and Europe. One thought is that the original attackers are working in conjunction with a second group that acts to monetize the infiltrated networks and stolen data, as the extortion itself often doesn't start for some months following the initial intrusion itself.
To mitigate the UNC6040 attack risk, GITG said that organisations should consider the following steps:
And, of course, as Google has advised in previous scam warnings, don't answer those phone calls from unknown sources. If you do, and it's someone claiming to be an IT support person, hang up and use the established methods within your organization to contact them for verification.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
New York Times
34 minutes ago
- New York Times
Trump Hails $90 Billion in A.I. Infrastructure Investments at Pennsylvania Summit
President Trump visited Pittsburgh on Tuesday to praise companies for investing more than $90 billion in data centers and other energy projects in Pennsylvania, aimed at accelerating the development of artificial intelligence. 'Today's commitments are ensuring that the future is going to be designed, built and made right here in Pennsylvania and right here in Pittsburgh, and I have to say, right here in the United States of America,' Mr. Trump said at the Pennsylvania Energy and Innovation Summit at Carnegie Mellon University. The event was organized by Senator David McCormick, Republican of Pennsylvania, who brought together Trump administration officials and executives from technology and fossil fuel companies, including Amazon Web Services, Anthropic, Google, ExxonMobil and Westinghouse. At the event, the private equity firm Blackstone announced that it would invest $25 billion in new data centers and energy infrastructure, including natural gas power plants. Google said it would invest another $25 billion in data centers and announced a separate $3 billion plan to upgrade two of Pennsylvania's existing hydroelectric dams to produce more electricity. CoreWeave, an A.I. cloud company, said it would invest $6 billion in a large data center near Lancaster, Pa. Trump administration officials have said that winning the artificial intelligence race with China is a top priority. Officials have also said they want to make it easier to approve new natural gas and nuclear power plants to supply the enormous quantities of electricity needed to supply data centers. On his first day in office, Mr. Trump declared a 'national energy emergency,' saying the country did not have enough power to meet its growing needs for A.I. and ordering agencies to roll back environmental rules. Critics have said the Trump administration, by cutting research funding and gutting scientific agencies, has made it easier for China to catch up to the United States in the A.I. race. On Monday, the chipmaker Nvidia also said that the administration had lifted restrictions on selling certain types of A.I. chips to China. Want all of The Times? Subscribe.
San Francisco Chronicle
38 minutes ago
- San Francisco Chronicle
Google partners with Youngkin and offers AI training courses to Virginia job seekers
RESTON, Va. (AP) — Republican Gov. Glenn Youngkin announced on Tuesday that Google will partner with his administration to provide free and low-cost artificial intelligence certification courses to Virginians as part of his office's ongoing effort to connect citizens to new jobs amid changes to the state's economy. The partnership, which he has described as an AI career launchpad, will provide Google-sponsored AI training courses for up to 10,000 Virginians at any given time, officials said at Google's office in the northern part of the state. The training opportunities will be listed on a job website that Youngkin launched earlier this year, in response to significant layoffs among federal workers by the Trump administration, including many workers from Virginia. 'All fields, all career movements somewhere along the way, are going to incorporate this next generation of technology,' Youngkin said at the news conference. The initiative comes with unemployment rising in Virginia, which has roughly 20,400 continued unemployment claims, state Secretary of Labor George' Bryan' Slater said after the news conference. Roughly 2,800 people initially filed unemployment claims during the first week of July, which is about 6.1 percent higher than the previous week. The AI webpage will feature the free courses as well as some low-cost learning opportunities, ranging 'from beginner friendly courses on AI fundamentals and practical workplace applications of artificial intelligence to bootcamps and degree programs offered by Virginia's leading-edge community colleges and universities,' according to the governor's office. Nicole Overley, commissioner of Virginia Works, said businesses have told her office that AI proficiency has become increasingly necessary in their industries. She said the training would help Virginians become competitive in the job markets where these very businesses are hiring. Overly confirmed that the training courses won't cost taxpayers anything and are being donated by Google. Bronagh Friel, head of partnerships at Google, said she was proud of the collaboration with the state. 'Google is committed to championing economic growth and opportunity in Virginia,' she said. ___
Forbes
39 minutes ago
- Forbes
Meta Cracks Down On AI-Generated Facebook Spam
MENLO PARK, CALIFORNIA - JULY 07: In an aerial view, people gather in front of a sign posted at Meta ... More headquarters on July 07, 2023 in Menlo Park, California. Since launching, Meta's new Threads platform has soared to 70 million users. (Photo by) Meta will begin removing monetization privileges and stop recommending content from accounts that repeatedly post unoriginal content to the company's platforms, in an effort to reduce the proliferation of AI-generated spam on Facebook. Unlike traditional content theft requiring human effort, AI programs can now produce thousands of slight variations of popular posts, overwhelming platforms with synthetic material and hurting content creators who made the original post. The policy aims to protect legitimate content creators who have complained about AI-generated posts drowning out original work. Content creators can still share and comment on others' work, but must add "meaningful enhancements" beyond simple watermarks or basic editing to avoid penalties. 'Too often the same meme or video pops up repeatedly, sometimes from accounts pretending to be the creator and other times from different spammy accounts. It dulls the experience for all and makes it harder for fresh voices to break through,' the company wrote in a blog post. Under the updated policy, Facebook will also reduce the distribution of duplicate videos and posts, test attribution links connecting copied content to original creators, and prioritize original content in user feeds. The changes will roll out gradually over the coming months. Content creators can now see if they are at risk of content recommendation or monetization penalties within the platform. An user opens social network Instagram mobile app in L'Aquila, Italy, on april 21, 2022. Meta ... More company celebrates 2022 Earth day with a special sticker to use on stories and reels. (Photo by Lorenzo Di Cola/NurPhoto via Getty Images) Scale of the Issue Meta has already taken action against 500,000 accounts engaged in spammy behavior in the first half of 2025, along with removing 10 million profiles impersonating content creators. The crackdown targets what industry observers call "AI slop,' which is identified as repetitive, artificially generated content flooding social feeds. Meta's Action Follows YouTube Meta's move follows similar action by YouTube, which introduced new rules in July targeting AI slop on YouTube Shorts. However, Meta's content moderation, largely powered by AI, has faced criticism for false positives, with over 30,000 people signing a petition urging Meta to add human customer support to review cases.
