"Google Exposes Potential Calendar Service Exploitation by Hackers as Covert C2 Channel"

November 6, 2023 at 08:25 AM

•

1 min read

"Google Exposes Potential Calendar Service Exploitation by Hackers as Covert C2 Channel" — Photo: The Hacker News

TL;DR Summary

Google has issued a warning about threat actors sharing a proof-of-concept exploit that utilizes its Calendar service as a command-and-control (C2) infrastructure. The tool, known as Google Calendar RAT (GCR), creates a covert channel by exploiting event descriptions in Google Calendar, making it difficult for defenders to detect suspicious activity. This highlights the ongoing interest of threat actors in abusing cloud services to blend in with victim environments. Google's Threat Analysis Group has disabled the attacker-controlled Gmail accounts used by the malware.

Topics:technology #c2-channel #calendar-service #cloud-services #cyber-attack-online-security #google #threat-actors

Share this article

Google Warns How Hackers Could Abuse Calendar Service as a Covert C2 Channel The Hacker News

Reading Insights

Total Reads

Unique Readers

Time Saved

1 min

vs 2 min read

Condensed

73%

299 → 82 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights