Geeks for your information
Threat Actors Use Google Docs to Host Phishing Attacks - Printable Version

+- Geeks for your information (https://www.geeks.fyi)
+-- Forum: News (https://www.geeks.fyi/forumdisplay.php?fid=105)
+--- Forum: Privacy & Security News (https://www.geeks.fyi/forumdisplay.php?fid=107)
+--- Thread: Threat Actors Use Google Docs to Host Phishing Attacks (/showthread.php?tid=15352)



Threat Actors Use Google Docs to Host Phishing Attacks - silversurfer - 17 June 21

Quote:Threat actors are exploiting Google Docs by hosting their attacks within the web-based document service in a new phishing campaign that delivers malicious links aimed at stealing victims’ credentials.
 
Researchers at email and collaboration security firm Avanan discovered the campaign, which is the first time they said they’ve seen attackers use this type of exploit in Google’s hosted document service, according to a report published Thursday by Jeremy Fuchs, marketing content manager for Avanan.
 
By hosting attacks in this way, attackers can bypass link scanners and evade detection from common security protections that aim to verify that links sent via email are legitimate. Previously, attackers have used the attack vector in smaller services such as MailGun, FlipSnack, and Movable Ink, according to Avanan.
 
The attack begins with an email that includes a message that could be relevant to business users who commonly use Google Docs within their corporate environment. In the example shown in the report, the message claims the link contains a set of “new rules for June 25.”
 
If a user clicks on the link, the page appears familiar to anyone using Google Docs to share documents outside the organization, Fuchs said.

Read more: Threat Actors Use Google Docs to Host Phishing Attacks | Threatpost