Source |
NoticeBored |
Identifiant |
2148836 |
Date de publication |
2020-08-13 06:05:41 (vue: 2021-01-06 20:37:57) |
Titre |
NBlog Aug 13 - Google customers phishing |
Texte |
We're seeing a steady stream of 'update your email'-type crude phishers along these lines:I have lightly redacted the URL, but those action buttons are clearly not pointing to an IsecT domain. Firebase Storage is a Google cloud storage/app service:Google promotes Firebase security in terms of high availability and authentication for their customers i.e. web developers using Firebase to host content on the web. No mention of security for their customers' victims though and although Google can't be held entirely responsible for its customers' nefarious activities, I presume (hope!) they have the processes in place to identify and respond efficiently to incidents of this nature.I've reported this incident through a Firebase customer support channel as there is no obvious way for us to report misuse of their services by phishers etc.I'll let you know how they respond. |
Envoyé |
Oui |
Condensat |
firebase action activities along although are aug authentication availability but buttons can channel clearly cloud content crude customer customers developers domain efficiently email entirely etc firebase google have held high hope host how identify incident incidents isect its know let lightly lines:i mention misuse nature nblog nefarious not pointing obvious phishers phishing place presume processes promotes redacted report reported respond responsible security seeing service:google services steady storage storage/app stream support terms these those though through type update url using victims way web your |
Tags |
|
Stories |
|
Notes |
|
Move |
|