Google Cloud Platform allows data exfiltration without a (forensic) trace

Attackers can exfiltrate company data stored in Google Cloud Platform (GCP) storage buckets without leaving obvious forensic traces of the malicious activity in GCP’s storage access logs, Mitiga researchers have discovered. GCP data exfiltration attack (Source: Mitiga) Covert data exfiltration from GCP buckets In short, the main problem is that GCP’s basic storage logs – which are, by the way, not enabled by default – use the same description/event (objects.get) for different types of access, … More →

The post Google Cloud Platform allows data exfiltration without a (forensic) trace appeared first on Help Net Security.

Thank you for stopping by our page. If you'd like to learn more about this topic, you can find the full article by clicking HERE

« DOD’s Cyber Mission Depends on Skilled Workforce, Streamlined Tech, Officials Say

Two Hacking Groups Seen Targeting Materials Sector in Asia »

Other cyber news you might have missed:

NFTs: The growing cybercrime risks and how to avoid them12 months ago
One lesser-known aspect of non-fungible tokens is their vulnerability to cybercrime. Learn how you can protect yourself and your company …
AI-generated videos with hidden malware links see 300% rise since November – TechCircle22 hours ago
Hackers are increasingly using template-based AI tools to spread malware, and such activities have risen by nearly 300% every month, … …
Malware hits millions of Android users- the apps you need to delete – TechStory8 months ago
Reports suggest how a new set of malicious apps comprising malware and adware has had the chance to go past …
New infosec products of the week: December 10, 2021 – Help Net Security1 year ago
SentinelOne Singularity Mobile combats mobile malware and phishing attacks · Oxeye CNAST platform delivers contextualized risk assessment for cloud … || …
New Linux-based ransomware targets VMware servers | CSO Online10 months ago
Cheerscript plants double-extortion malware on ESXi servers. … cso security hacker breach privacy ransomware malware attack gettyimages … || This is …

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Human Firewall

Be the wall that protects against cyber attacks

Google Cloud Platform allows data exfiltration without a (forensic) trace