Hackers have reportedly found a way to use the Google Calendar as command & control (C2) infrastructure which could create quite a few headaches in the cybersecurity community.

  • jmcs@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    21
    ·
    1 year ago

    I’m actually surprised that this wasn’t seen before. It’s a domain that can’t be blocked in lots of companies, and frequent requests to it won’t raise any flags in any company that uses Google Workspace.

    • Deconceptualist@lemm.ee
      link
      fedilink
      English
      arrow-up
      12
      ·
      edit-2
      1 year ago

      Yep, this. A couple years ago, Google Drive sharing was used in a loosely similar way to deliver malware, and Google had to build some new controls. I’m surprised it took the baddies this long to exploit GCal.