Cybersecurity experts have identified two phishing campaigns exploiting Firebase and Google Apps Script to deceive users and gain unauthorized access. These campaigns impersonate reputable organizations and utilize legitimate services to host malicious content, increasing their success rate. #Firebase #GoogleAppsScript
Keypoints
- Phishing campaigns are secretly abusing Firebase and Google Apps Script to host malicious content.
- A spear-phishing operation impersonated a Rothschild & Co employee targeting financial and energy sectors across multiple regions.
- The attack involved a fake brochure with a math quiz CAPTCHA, leading to ZIP files containing scripts that install remote access tools.
- Another campaign used Google Apps Script to host fake invoices and login pages, tricking users into revealing sensitive info.
- Such attacks leverage trusted platforms to evade detection and increase the likelihood of success.
Read More: https://www.securityweek.com/firebase-google-apps-script-abused-in-fresh-phishing-campaigns/