My email is listed as recovery email for an unknown Google account

The devils are in the details.

This message is yet another variant of malicious spoof spam mail tries to trick you to click the link that says "click here to disconnect".

If you hover over the URL, you will see the actual URL are NOT from Google, but some unknown site or shorten URL that will trigger a screen that downloads a malware(AKA Computer virus) or phishing site to trick you to enter Google username and password.

(UPDATE) there is another possibility mentioned here. Somebody accidentally enters your email address as recovery email (either due to typo or other reasons) It is mentioned here in google product forum. If you read through the message, you will notice most people will ask you DON'T CLICK any HTML link from an email.

If somebody wrongly enters their recovery email address, their Gmail account will not be activated. So you don't need to do anything with it.

That email actually is a terrible google email registration process that shouldn't be crafted in the first place. It just gives spammer ways to phish users: pour in tons of similar spam, people will think clicking the link will "fix" the spamming problem.

Perhaps this kind of email should be marked as "SPAM" to warn Google mail developer.


What I find is that many people are not aware on how to properly use their email accounts. I also encounter this frequently. So, here's what I could understand so far.

  1. If your email username account happens to be a very common name, you are more likely to receive such email.
  2. I find that many average users, even blindly enter an email address thinking that it would work.
  3. When they create new email address, they would add recovery email address, just to fill up that option.
  4. If you didn't click that disconnect, I find that I would receive email about any security related stuff for the unknown account link to my account.

So, it's not a phishing just some average users unaware about security risk. Imagine, I could, if I want to, reset their login using the link account.

If you are not sure, you can always copy the link and paste in your browser address instead of clicking directly. That way you can check the actual link.

Tags:

Email

Phishing

Google

Related

How is attacking WPA different from attacking WPA2? Couldn't credit/debit cards easily be made more secure? Why do mobile devices force user to type password after reboot? Does Rainbow Table Not Require Decompression? How to test CVE-2004-0789 Multiple Vendor DNS Response Flooding Denial Of Service? What kind of attack is prevented by Apache2's error code AH02032 ("Hostname provided via SNI and hostname provided via HTTP are different")? Chrome: Your connection is private but someone might be able to change the look of the page This Program Can not Be Run in DOS Mode Why does Microsoft use a digital signature catalog instead of a signature in the executable? Can a DDoS attack yield any information? Is encryption of passwords needed for an HTTPS website? Can I get a virus from connecting to a WiFi network?

Recent Posts