Hackers Using Google's Cloud Infrastructure to Dupe Users with Phishing Emails

Google | June 02, 2020

  • According to Cyware, researchers at Trustwave recently discovered numerous hackers infecting users with malware by targeting them via Google's Cloud infrastructure.

  • By leveraging Google Cloud’s infrastructure in their campaigns, threat actors have attached Google Firebase storage URLs to various phishing emails.

  • Once a user clicks on the Firebase link in the email, they are directed to a fake login page that requests their login credentials.


According to Cyware, researchers at Trustwave recently discovered numerous hackers infecting users with malware by targeting them via Google's Cloud infrastructure. A number of phishing campaigns uncovered by the team of researchers found that threat actors are using Google Firebase storage URLs to dupe users into giving up their login credentials. By leveraging Google Cloud’s infrastructure in their campaigns, threat actors have attached Google Firebase storage URLs to various phishing emails. Once a user clicks on the Firebase link in the email, they are directed to a fake login page that requests their login credentials. Once an unsuspecting user has entered their credentials, she fake page shares them with the hackers.


Per Trustwave: “This phishing campaign although low in volume seems to be targeting a range of industries, as well as being detected by our spam traps. Some exemplar phishing messages used in this campaign are illustrated here. The major themes include payment invoice, upgrade email account, release pending messages, verify account, account error, change password, etc.” Trustware also observed threat actors using the coronavirus pandemic and internet banking lures to trick victims into accessing fake vendor-payment forms designed to harvest users’ login credentials. Other tactics the hackers used included Microsoft Outlook and Office 365 phishing pages that harvest corporate login credentials.



Read more: NET ONE SYSTEMS ADOPTS JUNIPER'S CONTRAIL ENTERPRISE SOLUTION TO FURTHER NETWORKING INFRASTRUCTURE

The use of cloud infrastructure is gaining popularity among cyber criminals as they are not easily flagged by security controls, Cyware explained, adding, Because of the large user base of Google cloud services, such phishing emails can often be overlooked by the security teams.

~ Google


The use of cloud infrastructure is gaining popularity among cyber criminals as they are not easily flagged by security controls,” Cyware explained, adding, Because of the large user base of Google cloud services, such phishing emails can often be overlooked by the security teams. To combat such phishing attempts, individuals and tech leaders should ensure that they’re up to date on hackers’ latest endeavors. As one might imagine, the more knowledgeable a user is, the better prepared they are to avoid falling victim to nefarious phishing campaigns. Hackers have been abusing Google’s cloud computing service to redirect and intercept web and mail traffic on an array of vulnerable consumer routers.

Google Cloud’s infrastructure in their campaigns, threat actors have attached Google Firebase storage URLs to various phishing emails. Once a user clicks on the Firebase link in the email, they are directed to a fake login page that requests their login credentials.


The fraudulent emails cut through industries to take control of the Firebase’s data storage API in a Google Cloud Storage bucket and secretly keep malicious URLs in phishing emails, which then direct users to fraudulent pages. Fahim Abbasi, a researcher at Trustware, spoke about these phishing campaigns in his blog post and mentioned, while these campaigns deployed common phishing baits, the adoption of Google Firebase storage URLs made them look unique and authentic. He added, actors have taken undue advantage of Google’s reputation and cloud infrastructure to carry out phishing credential harvesting pages. Additionally, Abbasi also presented about nine examples with major themes of the phishing campaigns, which include release pending messages, payment invoice, verify account, upgrade email account, change password, account error, and several other similar to these.


Google Cloud Platform (GCP), offered by Google, is a suite of cloud computing services that runs on the same infrastructure that Google uses internally for its end-user products, such as Google Search, Gmail and YouTube. Alongside a set of management tools, it provides a series of modular cloud services including computing, data storage, data analytics and machine learning. Registration requires a credit card or bank account details. Google Cloud Platform provides infrastructure as a service, platform as a service, and serverless computing environments. In April 2008, Google announced App Engine, a platform for developing and hosting web applications in Google-managed data centers, which was the first cloud computing service from the company. The service became generally available. Since the announcement of the App Engine, Google added multiple cloud services to the platform.


Read more: COVID-19 HAS ACCELERATED THE LONG-DUE INVESTMENTS INTO DIGITAL INFRASTRUCTURE

Spotlight

Walkthrough of VMware vCloud Availability 3.0 Provider setup in this lightboard tutorial by Daniel Paluszek, Staff Solutions Engineer at VMware. This video reviews the high-level setup deployment process for a provider and the different services that correspond with vCloud Availability 3.0.

Spotlight

Walkthrough of VMware vCloud Availability 3.0 Provider setup in this lightboard tutorial by Daniel Paluszek, Staff Solutions Engineer at VMware. This video reviews the high-level setup deployment process for a provider and the different services that correspond with vCloud Availability 3.0.

Related News

HYPER-CONVERGED INFRASTRUCTURE

Vuzix Announces Agreement with Verizon to Deliver Augmented Reality with 5G and Mobile Edge Compute

Vuzix | December 28, 2021

Vuzix® Corporation a leading supplier of Smart Glasses and Augmented Reality (AR) technology and products, today announced that the Company has entered into an agreement with Verizon to leverage the power of Verizon's 5G and edge computing technologies to deliver a first-of-its-kind augmented reality experience for sports and gaming. The agreement between Vuzix and Verizon will focus on the technology advancement and commercialization aspects of delivering immersive augmented reality training experiences powered by Verizon's 5G Ultra Wideband service and edge compute platform and Vuzix Shield™ smart glasses, a CES® 2022 Innovation Awards Honoree. This agreement between Vuzix and Verizon will leverage a proof-of-concept program that was completed earlier this year, which demonstrated the power of Verizon's 5G and edge computing platform to run applications at the edge of the network using Vuzix smart glasses to deliver improved response time, longer battery life and increased computing capacity. "By leveraging Verizon's 5G Edge and ultra-light weight AR smart glasses from Vuzix, we are delivering immersive technology in the field of sports training and fan experience," Brian Mecum, Vice President of Device Technology at Verizon "5G and edge compute are important elements to ultimately deliver low latency and optimal performance of powerful smart glasses-based applications. We're excited to further our relationship with Verizon to leverage Verizon's 5G Ultra Wideband network and our award winning Vuzix Shield smart glasses to deliver new cutting-edge augmented reality experiences to sports and games," said Paul Travers, President and Chief Executive Officer at Vuzix. About Vuzix Corporation Vuzix is a leading supplier of Smart Glasses and Augmented Reality (AR) technologies and products for the consumer and enterprise markets. The Company's products include personal display and wearable computing devices that offer users a portable high-quality viewing experience, provide solutions for mobility, wearable displays and augmented reality. Vuzix holds 243 patents and patents pending and numerous IP licenses in the Video Eyewear field. The Company has won Consumer Electronics Show (or CES) awards for innovation for the years 2005 to 2021 and several wireless technology innovation awards among others.

Read More

APPLICATION INFRASTRUCTURE

O-RAN ALLIANCE Announces New Specifications, 3rd Global Plugfest and New Demonstrations of O-RAN Technology

O-RAN ALLIANCE | October 22, 2021

O-RAN ALLIANCE has released another set of technical specifications for open RAN published since July 2021. Initial versions of nine technical specifications comprise: O-RAN Non-Real-Time RAN Intelligent Controller (RIC) Architecture Near-Real-Time RIC and E2 Interface: Use Cases and Requirements v1.0 O-RAN E2 Service Model: RAN Control (E2SM-RC) v1.0 O-RAN O1 Interface specification for O-CU-UP and O-CU-CP towards the Service Management and Orchestration (SMO) framework O-RAN Acceleration Abstraction Layer FEC Profiles Infrastructure management services of the O2 interface O-Cloud Notification API Specification for Event Consumers O-RAN Xhaul Transport Testing Specification O-RAN Security Requirements Specifications Another 39 technical documents bring extensions and new features to the existing specifications. All new specifications will soon be available on our website. To learn more, please read our blog post. 3rd O-RAN ALLIANCE Global Plugfest Underway with 77 companies at 7 venues O-RAN ALLIANCE’s 3rd Global Plugfest has been in progress since summer 2021. 77 companies perform testing, integration or proofs of concept in 7 venues around the world. Technical work is planned to continue till the end of November 2021, with subsequent presentations of the results in our Plugfest Virtual Showcase. 18 demos of O-RAN technology prepared for MWC Los Angeles 2021 or the O-RAN Virtual Exhibition Five O-RAN demonstrations are planned to be presented at the MWC Los Angeles 2021. Parallel Wireless demonstrates its Open RAN, ALL G - 2G, 3G, 4G, and 5G, O-RAN compliant software platform showcasing an open, secure, and intelligent RAN architecture to deliver wireless connectivity, enabling people to be connected whenever, wherever, and however they choose. Visit the demo at South 2505Ex. VMware Telco Cloud Platform RAN, powered by Dell EMC PowerEdge server and Intel FlexRAN, delivers flexibility to open RAN. The demo showcases the platform’s horizontal design and automation capabilities with 3 simple steps to deploy and programmatically provision the platform with Kubernetes to run Altiostar’s vRAN functions. Visit the demo at Booth 1210. VMware demonstrates the power of VMware RIC SDKs, enabling its partners to accelerate the development of their xApp/rApp; creating a vibrant application ecosystem. We bring the intelligence and innovation to the RAN faster. Visit the demo at Booth 1210. Northeastern University showcases how Colosseum can be used to (i) instantiate a fully programmable end-to-end network controlled by O-RAN-compliant near-real-time RIC; (ii) collect performance datasets from the RAN, and (iii) implement AI-based control of the RAN through xApps and programmable software stacks. Visit the demo at Booth 1444. Cohere Technologies and VMware demonstrate how Cohere’s 5G MU-MIMO Spectrum Multiplier xApp running on VMware RIC controls multiple UEs simultaneously in the same time and frequency slots to drastically boost capacity. Visit us to learn how we successfully demonstrated these technologies to a major European operator. Visit the demo at Booth 1210. 13 more virtual demos for MWC Los Angeles 2021 have enriched the O-RAN Virtual Exhibition: MiTAC demonstrates a private 5G E2E O-RAN solution with O1 Interface based on 3rd Generation Intel® Xeon® Scalable Processors and integrated with an indoor O-RU which supports MIMO and 4T4R via Open Front Haul Interface. CIG and partners demonstrate an open 5G small cell solution. The E2E solution comprises O-CU and O-DU in one O-DU box, with L2/L3 SW, L1 SW and HW from different vendors. Both O-DU and O-RU are designed with COTS components and open interfaces. A fronthaul gateway is also available as part of the open solution. IPLOOK demonstrates a full stack cloud-native and container-based system of end-to-end 4G/5G converged mobile core solution for operators and enterprises. STL demonstrated 5G Small Cell Split 7.2 O-RU (GARUDA) Interworking with ASOCS 5G NR SA Evaluation Kit (Cyrus 2.0), based on O-RAN IoT profiles. The setup included STL O-RU and ASOCS EVK (DU, CU, Core VM and CPE). The scenarios demonstrated PDU session establishment (registration procedure), followed by CUS-plane and M-plane connectivity. University of Utah showcases O-RAN-based, xApp-controlled RAN slicing using the experiment workflows in the POWDER platform. We combine O-RAN with an open-source mobility stack, provide a top-to-bottom RAN application via the RIC, and deploy in a realistic wireless environment. This software is open-source and packaged in POWDER to enable further experimentation. IS-Wireless showcases the next level of software disaggregation in 5G OpenRAN with protocol layers working as independent VNFs on various computing platforms: O-DU VNF/CNF on Edge Cloud (COTS HW), O-CU VNF on Core/Regional Cloud. The company achieved E2E connectivity on 5G with split option 7.2 and option 2. Dell Technologies is working with an open ecosystem of partners to develop validated solutions. Together with Intel, VMware, Mavenir, Dell has developed a cloud-native Open RAN reference architecture available as a technology preview. The reference architecture offers a complete solution deployed on Dell EMC PowerEdge XR11, XR12 and R750 servers. Rohde & Schwarz provides an explanation and demo about the measurement of roundtrip latency on IP layer in O-RAN and legacy networks. The IP layer is the basis for the application layer latency. Real-time and interactive applications are rapidly increasing. These applications need to be supported by 5G and other technologies. A latency comparison over different network types can be achieved. VIAVI demonstrates the power of test case libraries to accelerate validation of disaggregated network performance, interoperability and security according to O-RAN defined test specifications. The TM500 UE Emulator Test Case Libraries leverage unmatched TM500 functional coverage and VIAVI expertise. Network performance is validated using extensive KPI monitoring and automated log analysis to quickly indicate compliance with the O-RAN test specifications. Keysight and Auray partner in Auray OTIC and Security Lab for Certification and Badging of O-RAN solutions by performing Conformance Test, IOT Test and E2E Test services based on corresponding test solutions with a comprehensive mechanism ensuring openness, interoperability and conformity of O-RAN solutions from ecosystem players for both operators and vendor community. Keysight Technologies showcases the Performance Benchmarking Solution (PBM) that directly controls Real UEs across device models and chipsets to automatically conduct tests as defined in TIFG E2E test specifications in both lab and field in a multi-vendor O-RAN environment. CMCC and Inspur demonstrate a QoE assurance application deployed on the Near-RT RIC, providing the capabilities of QoE aware and intelligent RAN Control by collecting RAN measurements as well as sending control command (e.g., maximum MCS configuration) through E2 interface. This demo is validated in some industry scenarios. Juniper Networks and VIAVI Solutions demonstrate successful transport of Open Fronthaul over a packet-switched network. Juniper's ACX Series routers, used as CSR/HSR, provide fronthaul transport connectivity. VIAVI's O-RU and O-DU emulators generate O-RAN compliant Open Fronthaul traffic (CU and M-plane), while VIAVI’s MTS-5800 fronthaul tester verifies the fronthaul transport/sync network. About O-RAN ALLIANCE The O-RAN ALLIANCE is a world-wide community of more than 300 mobile operators, vendors, and research & academic institutions operating in the Radio Access Network (RAN) industry. As the RAN is an essential part of any mobile network, the O-RAN ALLIANCE’s mission is to re-shape the industry towards more intelligent, open, virtualized and fully interoperable mobile networks. The new O-RAN standards will enable a more competitive and vibrant RAN supplier ecosystem with faster innovation to improve user experience. O-RAN based mobile networks will at the same time improve the efficiency of RAN deployments as well as operations by the mobile operators. To achieve this, the O-RAN ALLIANCE publishes new RAN specifications, releases open software for the RAN, and supports its members in integration and testing of their implementations.

Read More

WINDOWS SYSTEMS AND NETWORK

DDN Launches AI Innovation Lab with NVIDIA

DDN | November 12, 2021

DDN, the global leader in Artificial Intelligence (AI) and multi-cloud data management solutions, today announced that it has joined with NVIDIA to establish an AI Innovation Lab in Singapore to drive innovation and accelerate the deployment of AI-based solutions for enterprises. The AI Innovation Lab will provide customers and partners the necessary infrastructure and tools to build AI-led solutions at scale. With the best-in-class computing, networking and storage infrastructure provided by the lab, enterprises will be able to build, test and optimize AI models. The lab will be powered by DDN's A3I® AI400X™ systems to provide unmatched performance, optimal efficiency and flexible growth when used with NVIDIA DGX™ systems. DDN's AI400X systems have been deployed to deliver the robust and high-performance storage for NVIDIA Selene, the world's sixth most powerful supercomputer. DDN systems are certified by NVIDIA for scalable NVIDIA DGX™ POD™ and NVIDIA DGX™ SuperPOD™ configurations, and offer storage infrastructure optimized to meet the demands of evolving AI workloads. "As a trusted data storage solutions provider, we are excited to collaborate with NVIDIA to deliver Intelligent Infrastructure to enterprises locally to develop, test and deploy rich AI solutions at scale," said Atul Vidwansa, general manager for India & S.E. Asia, DDN. "This further demonstrates our commitment to empowering customers and partners to drive AI-powered innovations as quickly as possible." "The AI Innovation Lab will focus on enabling customers to innovate and develop industry-specific AI solutions to help customers and partners to co-create proof of concepts, innovate and test production-ready solutions in the lab," "With DDN and NVIDIA's powerful technologies, organizations can access world-class computing and storage infrastructure to fast track a broad range of AI and data science initiatives." Dennis Ang, director of the Enterprise Business at NVIDIA DDN at NVIDIA GTC 2021 Dr. James Coomer will lead a conversation at NVIDIA GTC 2021 entitled, "AI Data is Big Business: AI Leaders Tell Their Data Stories" with AI innovators across commercial and research organizations centered on the business impact of building world-class AI supercomputers with a strong focus on data. In "Making it Big: Maximizing Success with Accelerated Data for Real-World AI," Sven Oehme, chief technical officer, and Kurt Kuckein, vice president of Marketing, will discuss how data moves within an AI supercomputer and why conventional storage introduces limitations that can seriously impact your whole environment's efficiency. About DDN DDN is the world's largest private data storage company and the leading provider of intelligent technology and infrastructure solutions for Enterprise At Scale, AI and analytics, HPC, government and academia customers. Through its DDN and Tintri divisions the company delivers AI, Data Management software and hardware solutions, and unified analytics frameworks to solve complex business challenges for data-intensive, global organizations. DDN provides its enterprise customers with the most flexible, efficient and reliable data storage solutions for on-premises and multi-cloud environments at any scale. Over the last two decades, DDN has established itself as the data management provider of choice for over 11,000 enterprises, government, and public-sector customers, including many of the world's leading financial services firms, life science organizations, manufacturing and energy companies, research facilities, and web and cloud service providers.

Read More