Attacks take advantage of popular services, including Google Forms and Google Docs.
Security researchers have reported an uptick in cyberattackers weaponizing Google services to sneak past defensive tools and steal credentials, credit card details, and other personal information.
The Armorblox threat research team today published their analysis of five targeted phishing campaigns they call "the tip of a deep iceberg." These attacks take advantage of several Google services, including Google Forms, Google Docs, Google Site, and Firebase, Google's mobile platform for app development.
"Google is offering all these services that make building applications a lot easier," says Arjun Sambamoorthy, co-founder and head of engineering at Armorblox, of the recent increase in these attacks. "This actually encourages attackers to move toward Google instead of hosting a site themselves … this also adds credibility, in some sense, to phishing sites hosted on Google."
Most employees, and the security tools they depend on ...
Copyright of this story solely belongs to darkreading.com . To see the full text click HERE