Social engineering is a tactic utilized by phishers to manipulate their potential victims through emotional means. This technique involves exploiting a person's fear, distrust of authority, and tendency to follow rules. For example, a phishing email may pretend to be from Gmail, inquiring whether the recipient has requested a password reset for their account. If the recipient replies with "Stop", they are then asked to provide a verification code, giving the attackers access to the victim's account information.

Another scam is the "dubious domains" phishing attempt, where victims receive emails with attachments or images that appear to come from someone they know. However, the email is from a compromised contact, and when the victim clicks on the image or attachment, they are asked to sign in to their Gmail account again, which then gives away their login information to the attackers. To detect this scam, users should verify that the domain name only has "https://" and the green lock symbol before "accounts.google.com".

A Gmail scam known as "the dots don't matter" takes advantage of a feature in Gmail where addresses with or without dots are still delivered to the same inbox. Scammers can use this to reach a person's inbox with a different address, as in the case of a fake Netflix email that nearly caused a victim to add their card details to another person's account.

Another phishing attempt uses Google Drive to trick victims into giving away their login information. The scam email appears to be from a genuine user who has already been compromised, and the recipient is invited to open a shared file on Google Drive. Once they sign in, their login information is captured, and they are presented with a blank page.

The "lotto scam" involves an email claiming the recipient has won a Google Lottery, but it is a scam, as Google does not operate lotteries. Any personal information should not be provided, and the email should be marked as spam.

Lastly, the "Google Hangouts" scam involves victims receiving notifications of a job offer from Google or another company, but they are required to pay a fee for training. Victims may also be asked to provide confidential information through fake interviews on Google Hangouts.