Google to Alert Businesses Using G Suite of Government-Backed Cyberattacks


Much has been said about the evidence that Russia hacked the U.S. election in 2016, and there is evidence they are doing it this year as well. There’s also evidence that they were responsible for a disinformation campaign on Facebook.

Perhaps with this in mind, Google is highlighting a feature for their G Suite users. This will let businesses know if their users are being targeted in a government-backed attack. It will be a simple feature that can be turned on and off, and a simple email will alert the businesses if there has been a phishing, malware, or other attack.

Old Technology with Renewed Interest

It should be noted that this isn’t really a new feature for Google. They have been routinely warning Gmail users of government-backed hacks for a number of years.

Since 2012 we’ve warned our users if we believe their Google accounts are being targeted by government-backed attackers,” said Google. “We send these out of an abundance of caution – the notice does not necessarily mean that the account has been compromised or that there is a widespread attack.”


“Rather, the notice reflects our assessment that a government-backed attacker has likely attempted to access the user’s account or computer through phishing or malware, for example,” the company concluded.

The reason for this announcement for this older feature is because Google was picking up criticism of Gmail’s new confidentiality mode. The United States’ Department of Homeland Security was concerned that protected email links would unintentionally lead to more phishing attacks.

How the Feature Will Work

As outlined in a blog post, the feature will be turned off by default, but admins can turn it on in the Admin Console. If Google believes a government-backed attacker has tried to access a user’s account or computer, through a cyberattack, it will send an email alert to the admins.

This does not mean the account receiving the email has been compromised, and it also does not mean there was a widespread attack on an organization. It simply means a user’s account has been targeted.


After turning the feature on, admins can set up the default notifications. They can specify who should be notified of an attack. By default the emails will go to the super admins of the G Suite domain, but this can be changed in the Admin console.

Admins will have a choice of actions to take on individual alerts. They can secure the account and alert the user. When the user is alerted, they can also let them know what actions have already been taken.

Moving Forward

Microsoft has launched something similar through its AccountGuard pilot program. However, this is only available at this point to political organization accounts. “This service is part of Microsoft’s ‘Election Defense Technologies’ and is offered on a non-partisan basis by invitation only,” reports Bleeping Computer.

If two major players like Google and Microsoft are fighting government-based attacks, it stands to reason other organizations can’t be too far behind. It’s one thing if you’re looking at a hacker breaking into organizations’ or individual’s accounts, but it takes it to a whole other level to consider what could happen when a government is using all its assets to hack an organization.

What do you think of Google’s efforts? Do you think it will help with hacking attempts? Let us know your thoughts in the comments section below.

Image credit: Google G Suite website displayed on smartphone hidden in jeans pocket by Piotr Swat/Shutterstock

Laura Tucker Laura Tucker

Laura has spent nearly 20 years writing news, reviews, and op-eds, with more than 10 of those years as an editor as well. She has exclusively used Apple products for the past three decades. In addition to writing and editing at MTE, she also runs the site's sponsored review program.

One comment

  1. “The United States’ Department of Homeland Security was concerned that protected email links would unintentionally lead to more phishing attacks.”
    US DHS was and is concerned that they will lose the ability to read any and all emails, foreign and domestic.

    “If Google believes a government-backed attacker”
    Does that include US government backed attackers? Or only foreign ones?

    “What do you think of Google’s efforts?”
    If Google’s G Suite and MS’s Account Guard are meant to provide protection for businesses against phishing, malware, or other attacks, that’s commendable. Hopefully these products will be more successful the the ones currently on the market. However, if these products are supposed to “protect” business users from “disinformation” then I find such efforts laughable because then the products are nothing more than tools for censorship. Who died and appointed Google and MS as the arbiters of veracity?! Over their existence, both companies have spread enough disinformation to cover the surface of the Earth with a layer few feet thick.

    As far as “disinformation” in American politics is concerned – there hasn’t been a truthful campaign by ANY candidate since the very first election took place which was centuries before Russia decided to meddle in our elections. We have all heard some variation of “How do you know when a politician is spreading disinformation? His/her lips are moving.” Before we blame the Russians for spreading “disinformation”, we should look at our fearless and intrepid leaders and politicians.

Comments are closed.