> While the exposed database did not contain passwords or sensitive consumer data, the stolen business contact details have been used in a wave of phishing campaigns that mimic legitimate communications from Google.
It seems unlikely that changing one's current password will ameliorate future phishing using these data. The password isn't the problem here.
> While the exposed database did not contain passwords or sensitive consumer data, the stolen business contact details have been used in a wave of phishing campaigns that mimic legitimate communications from Google.
It seems unlikely that changing one's current password will ameliorate future phishing using these data. The password isn't the problem here.
Step 1: Update your password.
Step 2: Use non-SMS 2FA.
Step 3: Handcuff yourself to the Google Play Store forever, for your safety of course.
A yubikey is even better. Mail accounts are so incredibly important these days.
[dead]