IT Professional Targeted in Multi-Phase Social Engineering Attack

An IT professional with over 30 years of experience was targeted in a multi-phase social engineering attack involving vishing calls from attackers posing as Google and Trezor support. The attackers exploited a real Google Workspace support ticket to gain trust, compromised the victim’s account by guiding them through a password change and device approval, and exfiltrated sensitive financial and personal documents. The victim used AI (Claude) to analyze logs, remediate the breach, and harden security measures within 48 hours.