Google Blog, 6/01/11
Eric Grosse, Engineering Director of Google Security Team, disclosed in a post on the search giant's official blog yesterday that Google had detected and disrupted a user password phishing campaign that appears to originate from Jinan, China.
The campaign appears to have targeted "the personal Gmail accounts of hundreds of users including, among others, senior U.S. government officials, Chinese political activists, officials in several Asian countries (predominantly South Korea), military personnel and journalists."
"The goal of this effort seems to have been to monitor the contents of these users' emails," wrote Grosse, "with the perpetrators apparently using stolen passwords to change peoples' forwarding and delegation settings."
Google has subsequently notified the victims and secured their accounts, as well as contacted relevant government authorities.