#gridtide-backdoor
#gridtide-backdoor

[ follow ]

Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries

Google disrupted UNC2814, a China-nexus cyber espionage group that breached 53 organizations across 42 countries using novel backdoor GRIDTIDE that abuses Google Sheets API for command-and-control communications.

fromSecurityWeek

21 hours ago

Google Disrupts Chinese Cyberespionage Campaign Targeting Telecoms, Governments

The attacker was using API calls to communicate with SaaS apps as command-and-control (C2) infrastructure to disguise their malicious traffic as benign, a common tactic used by threat actors when attempting to improve the stealth of their intrusions. Rather than abusing a weakness or security flaw, attackers rely on cloud-hosted products to function correctly and make their malicious traffic seem legitimate.

Information security

[ Load more ]

#gridtide-backdoor#gridtide-backdoor

Google Disrupts UNC2814 GRIDTIDE Campaign After 53 Breaches Across 42 Countries

Google Disrupts Chinese Cyberespionage Campaign Targeting Telecoms, Governments

#gridtide-backdoor
#gridtide-backdoor