A fresh phishing scam targeting unsuspecting individuals is gaining traction, mimicking the look and feel of genuine Google emails. Security expert Yu Xian from SlowMist has raised a red flag on the X platform (formerly Twitter), alerting users to this deceptive tactic. These messages falsely portray recipients as under investigation by law enforcement agencies, prompting them to follow specific procedures. Despite Google’s continuous efforts to thwart these scams, this sophisticated phishing attack continues to evolve, utilizing customized websites mirroring Google’s subdomains to steal users’ credentials and inject a passkey immediately after the login process.