A potential threat from spoofing Google applications was cited in 2011.

https://arstechnica.com/security/2017/05/google-phishing-attack-was-foretold-by-researchers-and-it-may-have-used-their-code/