> While the exposed database did not contain passwords or sensitive consumer data, the stolen business contact details have been used in a wave of phishing campaigns that mimic legitimate communications from Google.
It seems unlikely that changing one's current password will ameliorate future phishing using these data. The password isn't the problem here.
aeonik · 20h ago
Step 1: Update your password.
Step 2: Use non-SMS 2FA.
Step 3: Handcuff yourself to the Google Play Store forever, for your safety of course.
e40 · 15h ago
A yubikey is even better. Mail accounts are so incredibly important these days.
It seems unlikely that changing one's current password will ameliorate future phishing using these data. The password isn't the problem here.
Step 2: Use non-SMS 2FA.
Step 3: Handcuff yourself to the Google Play Store forever, for your safety of course.