Google is advising its 2.5 billion Gmail users to change their passwords and enhance account security after a series of "successful breaches" by hackers, as reported by the New York Post.

The company recommends that users remain particularly vigilant about suspicious activity and set up additional security measures, including two-factor authentication, if they have not yet activated it.

Attackers primarily gain access to accounts through phishing emails with fake login pages or by tricking users into providing two-factor authentication codes. While most users have strong and unique passwords, only a third regularly update them.

Google is urging users to strengthen their security following the breach of its Salesforce database, where open data was primarily stolen, including contacts of small and medium-sized businesses. According to Google, the group ShinyHunters, known since 2020 for high-profile breaches (AT&T, Microsoft, Santander, Ticketmaster), may be preparing new attacks and blackmailing victims through the launch of a data leak site.

The company states that new attack methods are aimed at increasing pressure on victims, particularly those affected by recent incidents involving Salesforce.

All users impacted by the latest attack received emails from Google. The company encourages users to regularly check their account activity, avoid suspicious links, and report any suspicious actions.