Expert Comments

Hackers Abuse Google’s Cloud Infrastructure

Expert(s): Security Experts
Expert(s): Security Experts

Researchers have discovered that threat actors are targeting users by leveraging Google’s cloud infrastructure to infect them with malware, according to Cyware. In these campaigns, threat actors utilize the Google Cloud infrastructure service to conduct phishing by attaching Google firebase storage URLs in phishing emails. Most of the themes for the lures include payment invoices, account verifications, upgrading email accounts, change-password emails, and much more. Once the targets click on the Firebase link, they land on a supposed login page and are required to enter their credentials, which are shared with the cybercriminals.

Experts Comments

June 02, 2020
Jake Moore
Cybersecurity Specialist
ESET
Phishing scams are still very common, but particularly clever attempts are increasing and can deceive even those who are aware of them. In the moment, reading something which mounts pressure on you to verify or give up information can easily make you trip up and overlook a scam. You simply cannot trust all emails, no matter what the body of the message says. Verifying authentic emails has never been more important, and remains your best bet in beating the fraudsters. Companies that don't.....Read More
Phishing scams are still very common, but particularly clever attempts are increasing and can deceive even those who are aware of them. In the moment, reading something which mounts pressure on you to verify or give up information can easily make you trip up and overlook a scam. You simply cannot trust all emails, no matter what the body of the message says. Verifying authentic emails has never been more important, and remains your best bet in beating the fraudsters. Companies that don't have the proper security procedures in place can often leave themselves and their customers vulnerable to a social engineering attack, but constant delivery of training is vital to make people aware of the problem and raise a zero-trust policy. If you have fallen for a scam like this, it’s a race against the clock to reverse the damage caused, by calling the bank or changing all those passwords recently divulged.  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.
SUBMIT

You may also like

Booz Allen Report On CISOs And China Quantum Computing Risks,...

Experts Reactions On Sky Broadband Hack Warning

Ransomware Set To Break Records This Black Friday 2021

Security Expert On Apple Suing NSO Group

Meta Delays Plans To Rollout End-to-end Encryption

NCSC Issues Black Friday Warning To Tetailers

How The Zelle Fraud Scam Steals Your Bank Credentials

GoDaddy Data Breach Impacts Over A Million Users, Experts Reactions

Utah Imaging Data Breach – Expert Comments

Telecoms Security Bill – What’s Missing?

Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics

Twitter Facebook-f Linkedin Youtube

Working With Us

The Pages

Our Contributing Experts