Phishers Exploit Google Sites and DKIM to Send Fraudulent Emails

Malicious actors have used a sophisticated method to send fraudulent emails via Google's infrastructure and redirect recipients to fraudulent sites to steal their credentials. The emails, sent from no-reply@google.com, were signed and valid, exploiting Google Sites and the DKIM replay technique. This attack tricked users into believing the emails came from a legitimate source.