Gmail Users at Risk: Google Issues Urgent Password Change Alert

Google has officially acknowledged a major data breach that has impacted an estimated 2.5 billion Gmail and Google Cloud accounts, urging users to “change their passwords now” and enable two-factor authentication for enhanced security.

According to reports, the breach was linked to Salesforce, one of Google’s vendors, through which attackers gained access to sensitive account data. Google’s Threat Intelligence Group (GTIG) first detected the intrusion in June 2025, and by August, it had confirmed the use of overlapping tactics to compromise multiple accounts.

The cyberattack has been attributed to the hacking group ShinyHunters, previously linked to breaches at AT&T Wireless, Microsoft, and Ticketmaster. The group is notorious for using social engineering and vishing techniques, often impersonating IT staff to trick users into revealing credentials. GTIG noted that ShinyHunters typically follow up intrusions with extortion attempts, demanding bitcoin within 72 hours while threatening to leak stolen data.

While Google stated that the exposed information was “basic and largely publicly available business information,” cybersecurity experts warn that the leak still increases the risk of phishing scams and identity theft.

ShinyHunters have a record of selling stolen data on the dark web, amplifying concerns about misuse. To protect accounts, Google strongly advises users to reset their passwords, create unique passphrases, and enable two-factor authentication through Google Prompt or security keys.