Google has been rather warning-happy lately; from alerts about malware to blocked websites in China. Today, however, the search giant expanded those efforts with security warnings about state-sponsored attacks.
Google said the warnings will appear for a "subset" of users who Google believes "may be the target of state-sponsored attacks." When activated, a pink bar will appear atop various Google services (see below) with a warning that reads: "We believe state-sponsored attackers may be attempting to compromise your account of computer. Protect yourself now." The "protect yourself" text will link to a page with steps you can take to guard against unwanted intrusions.
That includes creating strong passwords, enabling Google's two-step verification, and updating your browser, OS, plugins, and document editors, Eric Grosse, vice president of security engineering at Google, wrote in a blog post.
Grosse warned users about phishing attacks that spoof Google services; be sure that the URL reads "https://accounts.google.com/" before entering your Google password.
"If you see this warning it does not necessarily mean that your account has been hijacked," Grosse said. Nor does it mean that Google's own system has been compromised.
"It just means that we believe you may be a target, of phishing or malware for example, and that you should take immediate steps to secure your account," he said.
How does Google detect these possible attacks? "We can't go into the details without giving away information that would be helpful to these bad actors, but our detailed analysis—as well as victim reports—strongly suggest the involvement of states or groups that are state-sponsored," Grosse wrote.
The news comes several days after Google announced plans to display warnings to Search users in mainland China when their query was likely to result in an error beyond the search giant's control.
Google has had a rather tumultuous relationship with Chinese officials in recent years. In January 2010, Google said there were attempts to hack into the Gmail accounts of Chinese human rights activists. At the time, Google pledged to no longer censor search results in China, even if that meant pulling out of the country entirely, and re-routed all Google.cn traffic to the uncensored Google.com.hk. Unsurprisingly, a Chinese minister warned of "consequences" if Google continued redirecting its results. Finally, the two parties settled on a hybrid solution.
Last month, Google also pledged to warn users whose computers or home routers appear to be infected with the DNSChanger malware. Google first started adding malware warnings to search results last summer after it noticed some unusual activity on its network while conducting routine data center maintenance. Google said last month that that effort resulted in warnings for 1 million of its users.
For more from Chloe, follow her on Twitter @ChloeAlbanesius.
