Tag: Google Cloud

Hackers abuse Google Cloud Run in massive banking trojan campaign
News

Hackers abuse Google Cloud Run in massive banking trojan campaign

Researchers in security are alerting us to instances of hackers misusing Google Cloud Run to spread large amounts of banking trojans, such as Astaroth, Mekotio, and Ousaban. With Google Cloud Run, customers can manage workloads and launch front-end and back-end services, websites, and apps without having to worry about scaling or maintaining an infrastructure. When Brazilian attackers began launching campaigns employing MSI installer files to distribute malware payloads in September 2023, Cisco Talos analysts noticed a sharp increase in the exploitation of Google's service for malware distribution. According to the researchers' assessment, Google Cloud Run's affordability and capacity to get over conventional security restrictions read more Hackers abuse Google Cloud Run in massi...
Google Cloud Resolves Privilege Escalation Flaw Impacting Kubernetes Service
News

Google Cloud Resolves Privilege Escalation Flaw Impacting Kubernetes Service

A medium-severity security vulnerability in Google Cloud's platform has been fixed. This vulnerability might be leveraged by an attacker to gain more privileges if they already have access to a Kubernetes cluster. In a warning published on December 14, 2023, the business stated that "an attacker who has compromised the Fluent Bit logging container could combine that access with high privileges required by Anthos Service Mesh (on clusters that have enabled it) to escalate privileges in the cluster." The vulnerability was found and disclosed by Palo Alto Networks Unit 42, who stated that attackers may use it as a weapon to commit "data theft, deploy malicious pods read more Google Cloud Resolves Privilege Escalation Flaw Impacting Kubernetes Service. Get up to date on the latest cy...
Google Cloud Introduces Security AI Workbench for Faster Threat Detection and Analysis
News

Google Cloud Introduces Security AI Workbench for Faster Threat Detection and Analysis

With the introduction of the Security AI Workbench, Google's cloud division is following in Microsoft's footsteps by utilizing generative AI models to improve insight into the threat landscape. Sec-PaLM, a specialized large language model (LLM) that has been "fine-tuned for security use cases," powers the cybersecurity suite. The goal is to use the most recent developments in AI to improve point-in-time incident analysis read more Google Cloud Introduces Security AI Workbench for Faster Threat Detection and Analysis. With ReconBee.com Stay ahead of the latest threats with in-depth coverage of cyber attacks and cybersecurity trends, and the latest cybersecurity news.