Bleeping Computer

Hackers abuse Google Apps Script to steal credit cards, bypass CSP

Attackers are abusing Google's Apps Script business application development platform to steal credit card information submitted by customers of e-commerce websites while shopping online. They are ...
TechRadar

Google Apps Script abused to launch dangerous phishing attacks

Hackers are hosting fake invoices on Google Apps Script, experts warn The invoices are sent via email Victims are redirected to a fake Microsoft 365 login page Threat actors have been seen abusing ...
Ars Technica

Google phishing attack was foretold by researchers—and it may have used their code

The “Google Docs” phishing attack that wormed its way through thousands of e-mail inboxes earlier this week exploited a threat that had been flagged earlier by at least three security researchers—one ...
Bleeping Computer

Threat actors abuse Google Apps Script in evasive phishing attacks

Threat actors are abusing the ‘Google Apps Script’ development platform to host phishing pages that appear legitimate and steal login credentials. This new trend was spotted by security researchers at ...
ZDNet

Google could have fixed 2FA code-stealing flaw in Authenticator app years ago

Last month, a cybersecurity firm discovered the first-ever Android malware that came with the capability to steal the 2FA (two-factor authentication) codes generated by the Google Authenticator app.
Wired

Google's Authenticator App Just Got a Handy New 2FA Tool

One of the most effective ways to stop your online accounts from being hacked is to turn on two-factor authentication. The security measure, often known as 2FA or multifactor authentication, requires ...