Recently a lot of gmail users have had their accounts hacked. It turns out that it was nothing to do with gmail directly, it was a phishing scheme which let the hackers get the passwords and usernames of gmail accounts.

This is the kind of thing which has been used on paypal accounts for users.

If you use Gmail I recommend using the secure https connection and being extra careful when you are opening links within emails, particularly those from people you don't know.

With help from affected users, we determined that the cause was a phishing scheme, a common method used by malicious actors to trick people into sharing their sensitive information. Attackers sent customized e-mails encouraging web domain owners to visit fraudulent websites such as "google-hosts.com" that they set up purely to harvest usernames and passwords.

These fake sites had no affiliation with Google, and the ones we've seen are now offline. Once attackers gained the user credentials, they were free to modify the affected accounts as they desired. In this case, the attacker set up mail filters specifically designed to forward messages from web domain providers.
http://googleonlinesecurity.blogspot...-phishing.html