Phishing

Microsoft and Google cloud phishing

Its first quarter , εγκληματίες στον κυβερνοχώρο έστειλαν 52 malicious messages using storage services such as Office 365, the Azure, the OneDrive, SharePoint, G-Suite and Firebase.

During the pandemic, criminals used the cloud to hide phishing scams from trusted Microsoft and Google services.

Phishing, microsoft, cloud, google

Proofpoint security researchers they discovered 7 million malicious emails y sent by the Microsoft 365 service and 45 million sent by Google's infrastructure in the first three months of 2021 alone.

They also report that malicious users used the services 365, Azure, OneDrive, SharePoint, G-Suite and Firebase, to send emails, but also for on servers.

The publication states:

“The volume of malicious from these trusted cloud services exceeded the volume of botnets in 2020, and the trusted reputation of these domains, such as outlook.com and sharepoint.com, increases the difficulty of detection.”

Since a breach of one account could give access to more others, ProofPoint estimated that 95% of organizations were targeted in cloud attacks and more than half of them were successful. In addition, more than 30% of the organizations that were breached "experienced post-access activity such as file management, email promotion and OAuth activities".

Once intruders have credentials, they can enter an organization's emails, locate affiliates and significant others, to convincingly send phishing emails.

Proofpoint gave many examples of emails that tried to trick users into giving out their information or serving malware.

Proofpoint research clearly shows that intruders use popular cloud communication tools to spread malicious emails and target people using Microsoft and Google infrastructure.

Breaking accounts in the cloud can be combined with serving ransomware, with disastrous results.

So securing cloud services should be a top priority for security companies.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.
Phishing, microsoft, cloud, google

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).