Blog

  2. Home
  3. Blog
  4. Roger Michelson
  5. Hackers are Using Google Docs (and other Cloud Services) to Attack Users

BNMC Blog

Bredy Network Management Corporation (BNMC) has been serving the Northeast area since 1988. BNMC works as a strategic business partner to provide organizations with proven design, implementation and support solutions.
Categories
Tags
Categories:   All Categories
Suggested keywords
x

Hackers are Using Google Docs (and other Cloud Services) to Attack Users

Hackers are Using Google Docs (and other Cloud Services) to Attack Users

There are many ways that hackers have attempted to subvert the advanced security precautions implemented by enterprises and small businesses alike, but some of the more recent and crafty ones include sending threats through seemingly legitimate sources, like social media. The latest in this string of attacks includes Google Docs, and it is problematic for a number of reasons.

Essentially, what happens is that the hacker places a malicious link in a Google Docs comment and uses the @ symbol to directly ping the target through a targeted email. Since the email comes directly from Google Docs, users may not have any reason to suspect that it could be malicious in nature. This particular strategy was observed by Avanan, which reported it on their blog. The attacks themselves are carried out using Google Docs and Google Slides, and are often leveraged against users of Microsoft Outlook.

These attacks are generally quite successful because of how easily they can bypass spam filters. Since Google is a well-known and trusted entity, it is on most Allow Lists, meaning that their messages will get through to your inbox in most cases. Furthermore, since the attack itself is carried out using the comments, only the attacker’s name is showcased, not their email address. This opens up tons of possibilities for hackers to fool users into thinking someone within their organization is sharing a document with them, even when it is just a hacker attempting to cause trouble.

In short, the moral of the story here is that you should never click on links that look or seem suspicious by any stretch of the imagination–--especially if they appear to be from a service that your business doesn’t utilize, like Google Workspace. If it does use Google Workspace, still treat it with caution and follow up with whoever the user is to ensure its authenticity. It never hurts to clarify the sender of a link, and it sure beats downloading some random threat that could leave your business in shambles. You can also double-check the destination for a link by hovering over it to ensure that it is sending you to the correct location, or at least the one that you expect it to. 

For updates on the latest threats, be sure to subscribe to BNMC’s blog

Tags:
Security Google Hackers

About the author

Roger Michelson

Roger Michelson

VP, Chief Operations Officer and co-owner of BNMC with 24+ years of experience developing and managing technical solutions and operations to drive growth and profitability in the IT services industry.

Author's recent posts

More posts from author
 

Comments

No comments made yet. Be the first to submit a comment
Guest
Already Registered? Login Here
Guest
Thursday, 21 November 2024

Captcha Image

News & Updates

Northeast MSP Titans of the Industry Announces BNMC as a Finalist for 2024 Awards
Woburn, MA – BNMC is honored to announce that we have been named a finalist in the inaugural MSP Titans of the Industry Awards for 2024. This recognition highlights our commitment to excellence, innovation, and leadership within the Managed Serv...
Read More

itc

Contact us

Learn more about what BNMC can do for your business.

BNMC - Woburn
827 Main Street
Woburn, Massachusetts 01801

BNMC - NH
2 Wellman Ave
Nashua, NH 03064

BNMC – Needham
21 Highland Circle
Needham, MA 02494

BNMC Jacksonville
Jacksonville, FL 32081

Copyright BNMC. All Rights Reserved. Privacy Policy