BBC News claims to have seen two lists detailing over 30,000 names and passwords from email providers, including Yahoo and AOL.
Forced password resets
Google is aware of the attacks and says it has forced those affected to change their passwords.
‘We recently became aware of a phishing scheme through which hackers gained user credentials for web-based mail accounts including a small number of Gmail accounts. As soon as we learned of the attack, we forced password resets on the affected accounts,’ the company said.
For details of how to protect your personal information see our test of security suites
However, Google was keen to stress that the leaks aren’t the result of a security flaw. ‘This is not a breach of Gmail security, but rather a scam to get users to give away their personal information to hackers who can [then] easily access and modify the affected accounts as they desire.’
It’s unclear whether the two phishing scams are linked.
How to follow the latest Which? Tech news
Are you a Twitter user? Follow WhichTech on Twitter for regular tech tweets.
Prefer RSS? Don’t miss a thing with the Which? tech RSS feed.
For just the main headlines in newsletter form, sign-up to our weekly Which? tech email.
Apple iPad 2 3G data plans compared – find the best 3G plan for your iPad
Best Android tablets round-up – we look at the best iPad alternatives around
Best cheap laptops for under £500 – find the best laptop deals