I think I have just been caught into giving my login details in response to a phishing email purporting to come from Google. I have now changed my login details, but I wanted to warn others. We had a standard G notification that an ad had been disapproved with a link to log in. No ad is diapproved and I have informed google. Question is, they cannot get my credit card details since these are encrypted- what other harm could they have done - changed my ads? Any one have any bad experiences?