That Google email look real? Don't click - it might be scam. Here's how to tell

Aitor Diago/Getty Images A sophisticated phishing scam is taking advantage of Google security flaws to convince people that the malicious emails and website are legitimate. In a series of X posts spotted by Android Authority, developer Nick Johnson explained how he was targeted by a phishing attack that exploits flaws in Google's own infrastructure. In his first post, Johnson includes a screenshot of the scam email claiming that Google had been served a subpoena requiring it to produce a copy of his Google account data. Also: Clicked on a phishing link? 7 steps to take immediately to protect your accounts The text of the email reads correctly; that is, it uses the right terms and doesn't contain any typos or broken English. The message itself is considered valid and signed by Google. It's sent from [email protected], a legitimate, automated company-used address. The email itself passes the DKIM signature check, which aims to verify the authenticity of a message. No other warnings ... Read full article.