Relay Attacks: What They Are and How to Stay Protected

Posted by Doyle Bozeman July 21, 2025
Relay Attacks: What They Are and How to Stay Protected

Posted on Monday, July 21, 2025

|

by AMAC, D.J. Wilson

|

0 Comments

|

Print

There are numerous reasons why senior citizens are frequent targets of scams. Mainly, bad actors seek to gain access to personal information or steal their life savings. Here’s the thing: Scammers aren’t going away any time soon, so seniors must stay educated on the latest scams to avoid falling victim. Beware of rising relay attacks. Read on to learn what they are and how to stay protected.

What are relay attacks?

Relay attacks are types of cyberattacks that involve intercepting and relaying communication between two devices. In relay scams, fraudsters exploit communication intermediaries to gain unauthorized access or control over another device.

How does it work?

One current relay attack is reportedly affecting Gmail users. (Note that Gmail is a type of email provided by Google and is the largest email service provider in the world.)

The example below involves a message coming to one’s inbox. In this scam, here’s what happens:

Scammers send emails pretending to be Google

Gmail users get a message that appears to be from their email provider. The legitimate-looking email is not from Google but is from a scammer posing as the popular email provider. In this sophisticated scam, fraudsters bypass the email’s spam filter and send messages directly to Gmail users’ inboxes. Scammers also steal the Google logo to make the emails appear legitimate. Since the emails look like they’re coming from Google, scammers count on account holders to open the emails and click on the links provided. Scammers then employ phishing attacks, deceiving people into revealing sensitive information, grabbing access to user information, or installing malware to include viruses, worms, adware, or ransomware.

What did the convincing emails say?

The fake Gmail messages sent by scammers reads something like: “A subpoena was served on Google LLC requiring us to produce a copy of your Google Account content.” Messages also contain a “Google Support Ref #” and require users to turn over access via provided links. Links take victims to a purported “support page” where they are instructed to enter account Login information. In doing so, victims are directly and unknowingly giving scammers access to their Gmail account, Google drive, and any third-party apps.

What can people do?

Keep your guard up!

  • Beware of scammers. Know that they are out there searching for victims. Once they establish contact, they can be convincing.
    • Stay updated on the latest scams to avoid being a victim.
    • Guard your personal information and don’t share it with anyone you do not fully trust. Always independently authenticate the source first. (Don’t skip that step!)
    • Avoid opening unfamiliar emails and clicking on links sent to you.
    • Verify the email address of the sender. If it is not an exact match to one you have on file, it’s likely a scammer.
    • If you see strange characters in the address or subject line of an email, it is also a scammer. Delete it and do not open.
    • Misspellings or awkward wording within an email also indicate scams.
    • Even if the email sender seems familiar, watch out for emails that necessitate the entering or verification of personal information such as providing Login info., passwords, or account numbers that they should already have. This indicates a scam.
    • When you recognize a logo within an email, don’t automatically assume it’s legitimate. Understand that scams can be sophisticated and logos can be mimicked, slightly altered or stolen.
    • If you didn’t initiate contact but you think an email might be legitimate, independently go to the source to verify. For example, exit the email and go to your account the way you normally would and look for security issues/activities/notices. If nothing is present, it’s safe to assume the email is a scam.
    • Understand company policies. For example, Google will NEVER send you emails asking you to input sensitive information.
    • Whenever possible, report internet service scams to your service provider or to the appropriate authorities.
    • Victims of scams should not be afraid to come forward. Reporting scams may possibly help recover accounts or lost funds or at least help prevent other people like you from being scammed.
    • Never respond to scams nor try to “outsmart” scammers.
    • Do your best to educate others. Share scam articles like this with your friends and family to help them avoid becoming victims.

Eye-opening statistics

Scams are not new. Unfortunately, each year new scams emerge or old ones like relay scams become more sophisticated. Often, scammers look for people who are isolated, kind and trusting, and have accumulated savings. Many adults, including seniors, are targeted for scams. Per stats shared by Exploding Topics, more than 1 in 3 U.S. adults have experienced a scam or financial fraud in the last year, with identity theft being the most prevalent. Though more women (67%) are scammed then men, men tend to lose more money on average. Worldwide, an estimated 608 million people fall victim to a scam each year. Adding insult to injury, scammers stole over $1 trillion globally last year. What’s worse is that estimates are likely lower than the real numbers as scams tend to go underreported. These eye-opening statistics encourage people to be on high alert for scams, including the latest relay attack involving Google Gmail accounts.



Read the full article here