Day by day Cyber attacks are on the rise. The new cyber criminals trying to hack Google cloud services to steal users data.
The researchers have discovered a new cyber crime trend wherein hackers are exploiting Google cloud services to conduct phishing attacks. Researchers warn that new attacks are more difficult for users to identify it. The experts explain that hackers are using the popular cloud storage services to disguise their activities. Hackers are also undetected by red flag labels that basically warn users about suspicious websites or domains.
About: Phishing Attacks
The cyber security expert said that they have come across a PDF file that was uploaded to Google Drive. The file contained a link to phishing page which is hosted on storage.googleapis[.]com/asharepoint-unwearied439052791/index.html. Hackers then prompt users to enter Office 365 credentials or organisation email details. Once the user fill the credentials, they are directed to a PDF report published by a globally know firm. Since the hack is hosted on Google cloud platform, user are unaware about the scam.
Also Read: OnePlus Nord launched in India
“Hackers are swarming around the cloud storage services that we rely on and trust, making it much tougher to identify a phishing attack. Traditional red flags of a phishing attack, such as look-alike domains or websites without certificates, won’t help us much as we enter a potential cyber pandemic. Users of Google Cloud Platform, even AWS and Azure users, should all beware of this fast-growing trend, and learn how to protect themselves. It starts by thinking twice about the files you receive from senders,” Lotem Finkelsteen, said in a post.
To stay protected, users should be more aware and taking precautions like don’t click on Unknown Domain, people look out for easy to miss spelling errors in the domain and website names. Do not click or download any file send by unknown sender. Also users advised not to fall in “Social offers”, those promise to cure for corona virus.