A new Gmail feature launched by Google will alert users when suspicious activity indicates a potential compromise of email accounts. Google hopes to help users combat email fraud and identity theft with the new feature.
Pavni Diwanji, Engineering Director for Gmail, described the following scenario in a post on the Official Gmail Blog. "A few weeks ago, I got an email presumably from a friend stuck in London asking for some money to help him out. It turned out that the email was sent by a scammer who had hijacked my friend's account."
Many small and medium businesses, as well as an increasing number of larger companies, rely on the web-based Gmail as their primary messaging platform. A sharp rise in socially engineered attacks and identity theft make Gmail account compromises a quickly growing concern.
Google has long had a security feature which displays the last login time for the account and whether or not the account is currently open in another location. That information should be sufficient for users to identify most compromises or suspicious activity, but apparently it is not overt enough and many users don't pay attention to it.
Diwanji summed up by reminding users to "Keep in mind that these notifications are meant to alert you of suspicious activity but are not a replacement for account security best practices."
That is sage advice, particularly for IT administrators, and small and medium businesses that rely on Gmail. The new suspicious activity alert is a nice feature, but it is not a comprehensive defense and does not enable customers to let their guard down. It is no silver bullet.
Businesses should ensure that users are aware of the new Gmail feature so they are not caught off guard if they see it. A process should be established for escalating the notification to management, or responding to suspicious activity alerts.
By developing a plan for what to do with the information, businesses can capitalise on the feature to augment existing security controls and protect Gmail accounts from fraud and identity theft.