More +
Friday, April 19, 2024
News
SEARCH NEWS

Hackers exploiting Google Docs, Outlook users at most risk

    SocialTwist Tell-a-Friend    Print this Page   COMMENT
New Delhi | Friday, 2022 5:45:08 PM IST
Hackers are sending malicious links through comments in Google apps like Docs and Slides primarily to Outlook users -- a known vulnerability that has not been fully closed or mitigated by Google since last year, cyber-security researchers have warned.

According to US-based enterprise cybersecurity company Avanan, hackers are increasingly using Google Docs' productivity features to slip malicious links past spam filters and cyber security tools.

In June last year, Avanan reported on an exploit in Google Docs that allowed hackers to easily deliver malicious phishing websites to end-users. Now, hackers have found a new way to do the same thing.

"Starting in December 2021, Avanan observed a new, massive wave of hackers leveraging the comment feature in Google Docs, targeting primarily Outlook users," said researcher Jeremy Fuchs.

The comment feature across the Google suite has become an attack vector for hackers, he claimed in a report.

Avanan said it notified Google of this flaw on January 3, via the report phish through email button within Gmail.

Google was yet to react to the report.

In one such attack, hackers add a comment to a Google Doc. The comment mentions the target with an '@'. By doing so, an email is automatically sent to that person's inbox.

"In that email, which comes from Google, the full comment, including the bad links and text, is included. Further, the email address isn't shown, just the attackers' name, making this ripe for impersonators," said the report that came out on Thursday.

"In this email attack, hackers found a way to leverage Google Docs, and other Google collaboration tools, to send malicious links. We primarily saw it target Outlook users, though not exclusively. It hit over 500 inboxes across 30 tenants, with hackers using over 100 different Gmail accounts," it elaborated.

To guard against these attacks, before clicking on Google Docs comments, users should cross-reference the email address in the comment to ensure it's legitimate.

"Utilise standard cyber hygiene, including scrutinising links and inspecting grammar and deploy protection that secures the entire suite, including file-sharing and collaboration apps," said the researchers.

--IANS na/ksk/

( 359 Words)

2022-01-07-11:58:02 (IANS)

 
  LATEST COMMENTS ()
POST YOUR COMMENT
Comments Not Available
 
POST YOUR COMMENT
 
 
TRENDING TOPICS
Ram temple, Ayodhya, Israel, Hamas, election, wrestler, Manipur, Pakistan, polls, sensex, CAA, Congress, BJP, COVID, Filmfare Awards, Afghanistan, BAFTA, Grammy, Oscar, Budget
 
 
CITY NEWS
MORE CITIES
 
 
 
MORE SCIENCE NEWS
Researchers discover how complexities in...
Study finds how adding chemotherapy to h...
Study finds common complication of atria...
Study finds biodiversity is key to bette...
Researchers discover brain region involv...
Study finds how childhood maltreatment c...
More...
 
INDIA WORLD ASIA
Delhi: AAP MLA Amanatullah Khan question...
Voting begins in 102 seats in first phas...
Vice Admiral Dinesh Tripathi appointed a...
Delhi LG seeks report from DG Prisons ov...
Arunachal elections 2024: State ready fo...
Maharashtra LS polls: Supriya Sule owes ...
More...    
 
 Top Stories
Lok Sabha polls: PM Modi urges peop... 
LS polls: Former Tamil Nadu CM Edap... 
Congress leader P Chidambaram casts... 
Lok Sabha polls: RSS Chief Mohan Bh... 
Lok Sabha elections 2024: Manipur v... 
At UN, Iran warns of 'decisive resp... 
World Bank asks Pakistan govt to ma... 
Everyone's nerves got tested: Hardi... 
 
 
Information
About Us
Advertise with us
Enquiry
Sitemap
Terms & Conditions
Privacy Policy
Disclaimer
Explore Webindia123
News and Press Releases
Education And Career
Video Shows
Movie And Celebrity Events
Deals And Discounts
Yellow Pages/ Business Contacts
Photo Gallery
Classified/ Personal Ads
Automobiles
Realestate/ Properties for sale