Tag: google
-
77 bösartige Apps im Google-Play-Store mit über 19 Millionen Downloads entdeckt
Das Zscaler ThreatLabz-Team hat 77 bösartige Apps im Google-Play-Store identifiziert und an Google gemeldet, die zusammen über 19 Millionen Installationen verzeichnen. Im Rahmen der kontinuierlichen Analyse von Anwendungen mit Schadcode haben die Security-Researcher die folgenden Trends ausgemacht: Zu den entdeckten Bedrohungen zählen vorrangig Adware-Anwendungen, bekannte Malware-Varianten wie Joker und Harly aber auch fortschrittliche Banking-Trojaner wie…
-
Hackers Threaten Google Following Data Exposure
A recent breach involving a third-party Salesforce system used by Google has sparked an unusual escalation. Although no Gmail inboxes, passwords, or internal Google systems were accessed, attackers gained entry to a sales database that included names, phone numbers, email addresses, and internal notes related to small business clients. This type of data is often……
-
Phishing Campaign Exploits Ads to Breach Hotel Property Management Systems
A sophisticated malvertising campaign has emerged that specifically targets hoteliers and vacation rental operators by impersonating well-known service providers. Okta Threat Intelligence reports that attackers have used malicious search engine advertisements”, particularly sponsored ads on Google Search”, to lure unsuspecting hospitality professionals to counterfeit login portals. The ultimate goal: harvesting credentials for cloud-based property management…
-
Salesloft Attacks Target Google Workspace
Adversaries targeting the Salesloft Drift application integration with Salesforce have also compromised Google Workspace accounts First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/salesloft-attacks-target-google/
-
Women cyber leaders are on the rise, and paying it forward
Tags: ciso, cloud, cyber, cybersecurity, data, defense, finance, google, group, insurance, international, jobs, lessons-learned, network, office, privacy, risk, service, skills, software, strategy, supply-chain, technologyCarol Lee Hobson, CISO, PayNearMe PayNearMeStill, companies could be doing more to bring women into cybersecurity positions, says Lauren Winchester, vice president of cyber risk services at Travelers.”Women make up more than half of the population yet represent roughly 20% of the cybersecurity workforce. While the number of women in cyber has increased over the…
-
TamperedChef infostealer delivered through fraudulent PDF Editor
Threat actors have been using multiple websites promoted through Google ads to distribute a convincing PDF editing app that delivers an info-stealing malware called TamperedChef. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/tamperedchef-infostealer-delivered-through-fraudulent-pdf-editor/
-
Google Urges 2.5B Gmail Users to Reset Passwords After Salesforce Breach
A sophisticated voice phishing operation has emerged as a significant threat to organizations worldwide, with cybercriminals successfully infiltrating Salesforce environments to steal sensitive data and demand ransom payments. Google’s Threat Intelligence Group has identified this financially motivated campaign, designating the primary threat cluster as UNC6040, which has demonstrated alarming success in breaching corporate networks through…
-
Google Warns Salesloft Drift Breach Impacts All Drift Integrations Beyond Salesforce
Google has revealed that the recent wave of attacks targeting Salesforce instances via Salesloft Drift is much broader in scope than previously thought, stating it impacts all integrations.”We now advise all Salesloft Drift customers to treat any and all authentication tokens stored in or connected to the Drift platform as potentially compromised,” Google Threat Intelligence…
-
AI-Powered Cyber Crime Raises Worldwide Alarm Bells.
AI-Powered Cyber Crime Raises Worldwide Alarm Bells. A new report from Anthropic, an AI startup backed by Amazon and Google, revealed a major shift in the cybercrime landscape. Through the use of Anthropic’s own AI model (Claude) and coding agent (Claude Code), an unnamed hacker was able to carry out an >>unprecedented
-
Google verlangt von AndroidEntwicklern eine Identifizierung
Google geht, angesichts einer Vielzahl an schädlichen Android-Apps zukünftig einen drastischen Weg. Alle Entwickler von Android-Apps müssen sich gegenüber Google identifizieren, wenn die App künftig noch unter zertifizierten Android-Geräten ausgeführt werden soll. Im Artikel A new layer of security for certified … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/08/29/google-verlangt-von-android-app-entwicklern-eine-identifizierung/
-
Google warns that mass data theft hitting Salesloft AI agent has grown bigger
Assume all Salesloft credentials are compromised after Workspace breach, Google says. First seen on arstechnica.com Jump to article: arstechnica.com/security/2025/08/google-warns-that-mass-data-theft-hitting-salesloft-ai-agent-has-grown-bigger/
-
Salesloft Drift breach hits all integrations
Google warns that Salesloft Drift OAuth breach affects all integrations, not just Salesforce. All tokens should be treated as compromised. Google disclosed that the Salesloft Drift OAuth breach is broader than Salesforce, affecting all integrations. GTIG and Mandiant advise all customers to treat connected tokens as compromised. Attackers used stolen OAuth tokens to access some…
-
Google Warns Salesloft OAuth Breach Extends Beyond Salesforce, Impacting All Integrations
Google has revealed that the recent wave of attacks targeting Salesforce instances via Salesloft Drift is much broader in scope than previously thought, stating it impacts all integrations.”We now advise all Salesloft Drift customers to treat any and all authentication tokens stored in or connected to the Drift platform as potentially compromised,” Google Threat Intelligence…
-
Google warns Salesloft breach impacted some Workspace accounts
Google reports that the Salesloft Drift breach is larger than initially thought, warning that attackers also used stolen OAuth tokens to access Google Workspace email accounts in addition to Salesforce data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-warns-salesloft-breach-impacted-some-workspace-accounts/
-
Salesloft Drift compromised en masse, impacting all third-party integrations
Tags: googleResearchers said Google Workspace customers were hit, and noted other platforms are impacted as well. Fresh evidence proves impact was not limited to Salesforce, as Salesloft previously claimed. First seen on cyberscoop.com Jump to article: cyberscoop.com/salesloft-drift-compromise-scope-expands/
-
Google shares workarounds for auth failures on ChromeOS devices
Google is working to resolve authentication failures preventing users from signing into their Clever and ClassLink accounts on some ChromeOS devices. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/google/google-shares-chromeos-workarounds-for-clever-classlink-auth-failures/
-
Google Identifies ‘Widespread Data Theft’ Impacting Salesforce-Salesloft Drift Users
Google Threat Intelligence Group shared its findings about a threat actor responsible for stealing Salesforce customer data via Salesloft Drift. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-salesforce-salesloft-drift-data-breach/
-
Google Big Sleep AI Tool Finds Critical Chrome Vulnerability
Make sure your Chrome browser is updated to the latest version to stay protected. First seen on hackread.com Jump to article: hackread.com/google-big-sleep-ai-tool-critical-chrome-vulnerability/
-
115.000 Phishing-Emails in einer Woche versendet
Tags: awareness, best-practice, cyber, email, google, infrastructure, mail, phishing, saas, softwareEine neue Art des Phishings breitet sich aus. Sie setzt dabei auf bewährte Marken, unaufgeklärte Mitarbeitende und ungeschützte Kanäle.Laut Google nutzen 40 Millionen Lehrer und Schüler weltweit Google Classroom, um Leistungsnachweise, Schulaufgaben und Lehrmaterial bereitzustellen. Da die Software weit verbreitet ist, wird sie attraktiv für Cyberkriminelle. Eine immer noch aktive, weltweite auftretende Kampagne hat der…
-
China linked UNC6384 targeted diplomats by hijacking web traffic
The China-linked APT group UNC6384 targeted diplomats by hijacking web traffic to redirect it to a website that delivered malware. China-linked cyberespionage group UNC6384 targeted diplomats by hijacking web traffic to redirect to a website used to deliver malware, Google’s Threat Intelligence Group (GTIG) warns. Cyberspies hijacked a network’s captive portal using an advanced adversary-in-the-middle…
-
UNC6395 targets Salesloft in Drift OAuth token theft campaign
Hackers breached Salesloft to steal OAuth/refresh tokens for Drift AI chat; GTIG and Mandiant link the campaign to threat actor UNC6395. Google Threat Intelligence Group and Mandiant researchers investigate a large-scale data theft campaign carried out to hack the sales automation platform Salesloft to steal OAuth and refresh tokens associated with the Drift artificial intelligence (AI) chat…
-
Google kneecaps indie Android devs, forces them to register
Sideloaders face ID checks, fees, and paperwork as Chocolate Factory tightens gates First seen on theregister.com Jump to article: www.theregister.com/2025/08/26/android_developer_verification_sideloading/
-
China Hijacks Captive Portals to Spy on Asian Diplomats
The Mustang Panda APT is hijacking Google Chrome browsers when they attempt to connect to new networks and redirecting them to phishing sites. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/china-hijacks-captive-portals-spy-asian-diplomats
-
Salesforce Attacks Stemmed From Third-Party App
A group tracked as UNC6395 engaged in widespread data theft via compromised OAuth tokens from a third-party app called Salesloft Drift. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/google-salesforce-attacks-third-party-app
-
Google previews cyber ‘disruption unit’ as U.S. government, industry weigh going heavier on offense
There are still impediments to overcome before companies and agencies can get more broadly aggressive in cyberspace, both legal and commercial. First seen on cyberscoop.com Jump to article: cyberscoop.com/google-cybersecurity-disruption-unit-active-defense-hack-back/
-
Google to verify all Android devs to protect users from malware
Google is introducing a new defense for Android called ‘Developer Verification’ to block malware installations from sideloaded apps sourced from outside the official Google Play app store. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-to-verify-all-android-devs-to-protect-users-from-malware/
-
Google Data Breach Sparks Phishing Wave Targeting Gmail Users
A Google Salesforce breach exposed business data, fueling phishing scams against Gmail users. Learn what happened and how to protect your account. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/google-data-breach-targets-gmail/
-
We Are Still Unable to Secure LLMs from Malicious Inputs
Nice indirect prompt injection attack: Bargury’s attack starts with a poisoned document, which is shared to a potential victim’s Google Drive. (Bargury says a victim could have also uploaded a compromised file to their own account.) It looks like an official document on company meeting policies. But inside the document, Bargury hid a 300-word malicious…
-
Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius
A threat group Google tracks as UNC6395 has pilfered troves of data from Salesforce corporate instances, in search of credentials that can be used to compromise those … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/08/27/hundreds-of-salesforce-customer-orgs-hit-in-clever-attack-with-potentially-huge-blast-radius/
-
Salesforce data missing? It might be due to Salesloft breach, Google says
Attackers steal OAuth tokens to access third-party sales platform, then CRM data in ‘widespread campaign’ First seen on theregister.com Jump to article: www.theregister.com/2025/08/27/salesforce_salesloft_breach/