Security News

PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing
2024-07-22 12:26

A Latin America-based financially motivated actor codenamed FLUXROOT has been observed leveraging Google Cloud serverless projects to orchestrate credential phishing activity, highlighting the abuse of the cloud computing model for malicious purposes. The campaign involved the use of Google Cloud container URLs to host credential phishing pages with the aim of harvesting login information associated with Mercado Pago, an online payments platform popular in the LATAM region.

Google Cloud Next 2024: New Data Center Chip and Chrome Enterprise Premium Join the Ecosystem
2024-04-09 15:35

Google Cloud announced a new enterprise subscription for Chrome and a bevy of generative AI add-ons for Google Workspace during the Cloud Next '24 conference, held in Las Vegas from April 9 - 11. Overall, Google Cloud is putting its Gemini generative AI in place as much as it can; for instance, the company is betting on providing Vertex AI infrastructure for other companies' AI and hardware like the new Axion CPU. We attended a pre-briefing for an early look at the new features and tools, including a generative AI video service for marketing and internal communications use.

Google Cloud/Cloud Security Alliance Report: IT and Security Pros Are ‘Cautiously Optimistic’ About AI
2024-04-03 16:00

The C-suite is more familiar with AI technologies than their IT and security staff, according to a report from the Cloud Security Alliance commissioned by Google Cloud. The report, published on April 3, addressed whether IT and security professionals fear AI will replace their jobs, the benefits and challenges of the increase in generative AI and more.

Banking Trojans Target Latin America and Europe Through Google Cloud Run
2024-02-26 09:51

Cybersecurity researchers are warning about a spike in email phishing campaigns that are weaponizing the Google Cloud Run service to deliver various banking trojans such as Astaroth (aka...

Hackers abuse Google Cloud Run in massive banking trojan campaign
2024-02-21 21:07

Security researchers are warning of hackers abusing the Google Cloud Run service to distribute massive volumes of banking trojans like Astaroth, Mekotio, and Ousaban. Google Cloud Run is lets users deploy frontend and backend services, websites or applications, handle workloads without the effort of managing an infrastructure or scaling.

Google Cloud’s Nick Godfrey Talks Security, Budget and AI for CISOs
2024-02-12 14:51

As senior director and global head of the office of the chief information security officer at Google Cloud, Nick Godfrey oversees educating employees on cybersecurity as well as handling threat detection and mitigation. We conducted an interview with Godfrey via video call about how CISOs and other tech-focused business leaders can allocate their finite resources, getting buy-in on security from other stakeholders, and the new challenges and opportunities introduced by generative AI. Since Godfrey is based in the United Kingdom, we asked his perspective on UK-specific considerations as well.

Prowler: Open-source security tool for AWS, Google Cloud Platform, Azure
2024-02-07 05:30

Prowler is an open-source security tool designed to assess, audit, and enhance the security of AWS, GCP, and Azure. "Easy to use from the command line with simple, understandable output, Prowler offers standard reporting formats like CSV and JSON, enabling users to thoroughly examine findings across any cloud provider, all in a uniform format. Its seamless integrations with Security Hub and S3 facilitate easy incorporation with other SIEMs, databases, and more. The ability to write custom checks and develop custom security frameworks is crucial for our expanding community," Toni de la Fuente, the creator of Prowler, told Help Net Security.

Google Cloud Resolves Privilege Escalation Flaw Impacting Kubernetes Service
2023-12-28 13:20

Google Cloud has addressed a medium-severity security flaw in its platform that could be abused by an attacker who already has access to a Kubernetes cluster to escalate their privileges. "An...

Google Cloud’s Cybersecurity Predictions of 2024 and Look Back at 2023
2023-12-21 18:21

Generative AI can be used by attackers, but security professionals shouldn't lose sleep over it, according to a Google Cloud threat intelligence analyst. Google Cloud's team recently spoke about the most notable cybersecurity threats of 2023 - multi-faceted extortion and zero-day exploitation - and predicted more zero-day attacks in 2024, during two public, virtual sessions.

Google Cloud’s Cybersecurity Trends to Watch in 2024 Include Generative AI-Based Attacks
2023-11-09 15:52

What will cybersecurity look like in 2024? Google Cloud's global Cybersecurity Forecast found that generative AI can help attackers and defenders and urged security personnel to look out for nation-state backed attacks and more. Threat actors will use generative AI and large language models in phishing and other social engineering scams, Google Cloud predicted.