I received a call from 202-455-8888 regarding authentication for my gmail account but I haven't logged in, so what do I do now?
I have enabled multi-factor authentication for my Gmail. When I need to log in to my mail, I should enter an OTP which is sent to my phone number.
I got a call from this number, even though I did not sign in to my mail, and it said "Your verification code is ******". Does this mean that my account is at risk? I have checked my mailbox, and there is no attempt to login.
I found this on the Google support forum:
Yes, this number is definitely Google's number used for various verification purposes. Just be aware of this: If you initiate the verification process, then it is perfectly safe. If, on the other hand, somebody else sends you a code from this # (it is possible) and then asks you to give them the code verbally or by text, they are trying to scam you! So to be safe, do not ever give the code to anybody, no matter how convincing their story is!
There are two possibilities:
Someone has your password and is trying to use it, but fails the 2FA. Change your password!
Someone is trying to register a new account or 2FA to an existing one, but has (possibly accidentally) added your phone number instead of their own.
It's possible that there's just a minor difference in your numbers and it's simply a typo, e.g. the Ghostbusters are trying to register +1-311-555-3268 instead of +1-311-555-2368.
It's safer this way, when there's just an automaton that gives you information, but if someone calls from number +1 202-455-8888 and tells them that they are from Google, it's probably still a scam, because Caller ID spoofing is relatively easy. You shouldn't tell them anything. If they really were Google, they would already know it anyway.
Answer (1)
Receiving an unexpected call from a number like 202-455-8888, which is often associated with Google's authentication services, can be concerning, especially if you haven't attempted to log in to your Gmail account. Here are the steps you should take:
Do Not Share Any Information: If you answered the call, do not provide any personal information, verification codes, or account details.
Check Recent Account Activity:
Log in to your Gmail account from a secure device.
Go to your Google Account by clicking on your profile picture and selecting "Manage your Google Account".
Navigate to the "Security" tab.Under "Recent security events" or "Your devices", review any suspicious activity. If you see any unfamiliar devices or locations, it could mean someone is trying to access your account.
Change Your Password:
Immediately change your Google account password to something strong and unique.
Avoid using common passwords or passwords you have used for other accounts.
Enable Two-Factor Authentication (2FA):
If you haven't already, enable 2FA for an additional layer of security.
Go to the "Security" tab in your Google Account.Under "Signing in to Google", select "2-Step Verification" and follow the instructions.Review Security Settings:
Ensure your recovery email and phone number are up-to-date.
Check any connected apps and websites under "Third-party apps with account access". Remove any that you do not recognize or no longer use.
Contact Google Support:
If you are unsure or have noticed suspicious activity, contact Google Support for further assistance.
Monitor Your Accounts:
Keep an eye on your email and other accounts for any unusual activity.
Be cautious of any further unsolicited calls or emails claiming to be from Google or other service providers.
Taking these steps will help secure your account and protect your personal information from potential unauthorized access.