If #Google simply watched for fake PayPal, USPS, Fedex, and a relatively small number of similar phishes -- which would be straightforward to detect since they usually come from random #Gmail addresses(!) they could cut down on these phishes dramatically. I can't understand why they don't bother, unless they really just don't care about email egress from Gmail. And the use of their GCP for phishing payloads is massive, again relatively simple to detect.
@lauren You got it: they donʼt care. Itʼs also why you see Google ads on disinformation websites. They literally fund them, and they would rather have scale over quality and safety.