Google Says Hackers Pose as IT to Breach Firms

Hackers are increasingly using fake IT support calls as a tactic to infiltrate corporate systems, according to a warning from Google. The attackers impersonate legitimate helpdesk personnel, contacting employees to manipulate them into granting access to sensitive internal resources. These social engineering schemes are designed to bypass security measures by exploiting human trust rather than technical vulnerabilities.

The method involves persuading victims to install remote access software or divulge confidential login credentials. Once inside the network, threat actors can escalate their access privileges and move laterally across systems, posing a significant risk to enterprise security.

Google’s disclosure highlights a broader trend in cybercrime, where attackers favor low-tech approaches to gain high-level access. The company emphasized the need for organizations to strengthen employee training and implement strict verification protocols for support interactions. As these types of intrusions become more common, firms are urged to remain vigilant against deceptive tactics targeting their workforce.