I noticed the following behaviour, after my main MCC was hacked, one of my accounts received a phishing email.

We just had ours hacked over the weekend. They spend over $8000 in just a few days. I got the standard answer from Google on this one.

What I can't figure out is how they got in. I'm the only person who knows the password and I never click links in e-mail messages, I always open a new tab and type it in direct.

I saw somebody mentioned iPhone. I use my iPhone to check things on my Google account.

Is it a possibility that the iPhone connection was hacked or that Google itself was hacked and got everybodies account info from there?

one of my clients got the phishing mail again, he knows the deal, but he saw the domain and thought it "looked" real...

adstechselect . com

he still didn't click it, i've beaten it into him to not do that.

AWA - does G want us to forward these phishing attempts to a certain inbox there?

I just discovered that my client center account was hacked, and all 4 of the accounts I manage. It was the same anti-virus, cheap airfare, etc ads. They racked up $34,395 dollars in 12 hours!

Unbelievable. I seem to have caught it before very many, if any charges went through to my credit cards. I reported my credit card and my backup credit card as stolen. I couldn't risk having that much of a charge on my accounts, even for a couple of days...

I too wish I knew how they got my password. I don't click on e-mail links ever. I do use my iPhone with my google account.

Really bad time of the year, I make most of my money from back-to-school. This could really, really hurt me financially if my adwords accounts are down for any period of time.

It has been a week for me now. No response from Google so far, apart from the 'we are investigating' one.

I also took care Google no longer is allowed to withdraw money from my bankaccoun.

Adwords is closed for Labor Day. How can a company that generates millions in revenue, 24-7, possibly have phone support that is only available during regular business hours?

My ads have been down for three days and I haven't even received acknowledgment of the problem.

The lack of support hours is completely astonishing ... isn't it?!

... and you say "millions in revenue"? Try over $3 BILLION in PROFIT last quarter alone!

Got an update again....received an email from google:
Subject: "Outstanding Balance for Google AdWords" :-(

Ofcourse I've asked my bank to block my bankingaccount.

Can't believe it takes this long for Google to do the investigation :(

New phishing mail on its way.

I was almost convinced.

It goes .... disapproved ads... gives a reason..very sophisticated.

Watch out..

Just got an answer from Google. They investigated my complaint and confirmed my account has been compromissed and I am not responsible for the > 10.000 euro's spend.

Big relief! I still wonder though how the hell the got in...I'm not the kind of guy fooled by phising tricks :(

I'm sure this was no fun for you at all, think the same must be true for Google and their aggregate funds lost must be substantial. I wonder what future security protocols G might add to protect their advertisers, their own finances and their time (I'm sure this is time consuming for G)... maybe give anyone who would be willing to layer in extra security a small discount... I'd give G my fingerprints and buy a biometric scanner if it would help, I just trust G that way.

Anyhow, very glad to hear that things were resolved for you!

And I hope G pursues the perp's data trail and helps law enforcement catch them and that they get locked up hard.