In an effort to protect its business users from hacking, Google is rolling out a new feature for G Suite users that will let organizations know if any of their users have been targeted by a government-backed attack. By default, the warning feature is disabled, but administrators can turn on the feature to receive an email alert if Google detects any state-sponsored hacking attempts have been made, Google said in a blog post detailing the update. These hacking attempts can range from phishing, malware, or other means.
To enable the alerts, G Suite administrators can navigate to the Admin Console, click on Reports, select Manage Alerts, and go to the Government-backed hack option.
Even if an administrator receives an alert, it doesn’t mean that the user’s account has been compromised, Google cautioned. However, if an administrator feels that more action is necessary, Google also provides some simple tools to take action. Administrators can alert the user, share more details about the hacking attempts with the user, secure the user account, and manage alerts within the administrator dashboard.
While the alert gives organizations more insight into potential cyberattacks on their users, the feature isn’t new. Google has been warning Gmail users of government-backed hacks for years.
“Since 2012, we’ve warned our users if we believe their Google accounts are being targeted by government-backed attackers,” Google said. “We send these out of an abundance of caution — the notice does not necessarily mean that the account has been compromised or that there is a widespread attack. Rather, the notice reflects our assessment that a government-backed attacker has likely attempted to access the user’s account or computer through phishing or malware, for example.” These alerts are usually sent when Google detects phishing emails, attachments with malware, or brute-force attacks.
Google’s G Suite announcement comes after the company experienced criticism for Gmail’s new confidentiality mode, with the Department of Homeland Security expressing concern that protected email links may have the unintended consequence of leading to more phishing victims.
Given the rising number of cyberattacks, Microsoft also recently launched similar protections for its users through a new AccountGuard pilot program. Unlike Google’s efforts, Microsoft’s AccountGuard is only available at this time for accounts from political organizations, according to a report from Bleeping Computer. “This service is part of Microsoft’s ‘Election Defense Technologies’ and is offered on a non-partisan basis by invitation only,” the site reported.