Tech »  Topic »  Yet another phishing campaign impersonates trusted Google services - here's what we know

Yet another phishing campaign impersonates trusted Google services - here's what we know

2 hours ago   techradar.com
(Image credit: weerapatkiatdumrong / Getty Images)
  • Attackers abused Google Cloud Application Integration to send phishing emails from legitimate Google domains
  • Emails mimicked Google notifications, redirecting victims through trusted services
  • Nearly 3,200 businesses targeted; most victims in U.S. manufacturing, tech, and finance sectors

Legitimate Google services are, once again, being abused in phishing attacks, successfully tricking targets into clicking malicious links and giving away their login credentials.

In a newly released report, cybersecurity researchers from Check Point said they’ve seen almost 10,000 emails, being sent to roughly 3,200 businesses in a span of two weeks.

All of the messages were sent from the email account noreply-application-integration@google.com, meaning the attackers were abusing Google Cloud Application Integration.

Hackers distribute thousands of phishing attacks through Mimecast's secure-link featureFake Facebook Business pages are bombarding users with phishing messages - so what can be done?Scammers trick over 500 ...
Copyright of this story solely belongs to techradar.com . To see the full text click HERE