Back in May, Google updated its Gmail app on Android to warn about phishing attempts. It is now rather belatedly bringing that same protection to the iOS app.
The protection kicks in if you click on a sketchy link in an email, with two different levels of warning …
If Google knows the site to be a phishing operation, it will tell you.
If the site is suspected to be sketchy but the company is not yet 100% certain, a different warning is displayed.
For identified phishing sites, there is a link to report false positives.
Phishing is a technique where an email claims to be from a known company, like Apple, PayPal or a bank. The link takes you to a fake website which asks you to enter your login credentials, which are then captured by the attacker and used to access your account.
Many phishing attacks are extremely crude, with obvious spelling and grammatical errors, and a website that looks little like the real thing. However, there are some sophisticated ones with very plausible-looking emails and websites. There have even been some that apparently display the correct URL.
The best advice is always to access sensitive sites from your own bookmarks or by typing in the URL.
Phishing was one of two methods used to obtain the iCloud logins used in the celebrity nudes attack back in 2014.