Google Flags China-Linked AI Phishing Networks Impersonating Brands

Google has identified a sophisticated China-based phishing operation that leverages artificial intelligence to create highly convincing fake websites impersonating trusted American brands, according to the company's General Counsel.

Halimah Delaine Prado, Google's General Counsel, detailed the threat during a Fox News appearance, describing how what she termed an "outsider enterprise" based in China uses AI tools to build fraudulent sites that mimic legitimate companies. The operation has successfully targeted hundreds of thousands of Americans, resulting in losses totaling millions of dollars.

The AI-powered threat

Prado specifically cited T-Mobile as one of the brands being impersonated in these schemes. The AI-generated sites are sophisticated enough to fool victims into providing personal information, credentials, or payment details, believing they are interacting with legitimate services.

The use of artificial intelligence marks an evolution in phishing tactics. Traditional phishing campaigns often contained telltale signs of fraud—poor grammar, suspicious URLs, or low-quality design. AI tools now enable attackers to rapidly generate professional-looking websites that closely mirror authentic brand experiences, making detection significantly harder for average users.

Why it matters

This represents a fundamental shift in the cybersecurity threat landscape. AI democratizes sophisticated fraud capabilities, allowing criminal networks to scale operations that previously required significant technical expertise and resources. For enterprises, the reputational damage from brand impersonation can be severe, even when the company itself has not been breached. The China nexus also raises questions about whether these operations receive state tolerance or support, though Prado's characterization as an "outsider enterprise" suggests a criminal rather than state-directed operation.

Google's response strategy

Prado outlined Google's approach to combating these evolving threats, though the brief remarks did not detail specific technical countermeasures. Google's position as both a search engine and email provider gives it visibility into phishing campaigns at multiple stages—from fraudulent site creation to distribution via Gmail and discovery through search results.

The scale of the problem—hundreds of thousands of victims—suggests these operations have been running for some time before detection and public disclosure. The millions in losses underscore the financial motivation driving these AI-enhanced criminal enterprises.

The details were first reported by Fox News in an interview segment aired on June 12, 2026.