A dangerous phishing technique targeting Gmail users is gaining steam in recent weeks. The attack is designed to look exactly like Googles page for signing into Gmail. The address bar for the page includes mention of accounts.google.com, leading unwary users to believe the page is harmless. When users enter their Gmail username and password on the fake login page, the data is sent to the attacker. The speed at which the attackers sign into a compromised account suggests that they may have a team standing by to access accounts as they get compromised.”]
Source: https://www.darkreading.com/attacks-breaches/dangerous-new-gmail-phishing-attack-gaining-steam