The attackers send an email to your Gmail account and it’s typically from someone you know – their account has been compromised. An attachment is included with the message that looks like an image.
When clicked you are redirected to a logon screen. If you enter your credentials on this page your account is now compromised. The attackers immediately begin to use your account to send the phishing message to your contacts.
Be diligent and help educate the less tech-savvy people in your life.