Hackers Uses Google Drive To Collect User's Data

google drive to collect user data

According to the security firm Trend Micro, hackers are using Google drive to steal user's information via malware attack. Once the malware executed on victim's machine, the malware checks for the following file types in certain locations to upload them into Google Drive :
  • XLSX
  •  XLS
  • DOC
  • DOCX
  • PDF
  • TXT
  • PPT
  • PPTX

The malware usually checks recycle bin and the user documents folder for files. Then it uploads those files to the Google drive. In order to upload those files to Google Drive, the client_id and client_secret were embedded on the malware, together with a refresh token.

Kervin Alintanahin, Threats Analyst at Trend Micro said, "We've also found that the file names reveal the targeted entities, which are mostly government agencies."

"Use of Google Drive isn't the only thing that connects this malware to Google. The malware was actually created using the Go programming language(golang), which was initially developed by Google." he added.

Trend micro notified the Google about this incident as soon as they discovered it.

No comments

Powered by Blogger.