[HackerNews] Hackers Using Compromised Google Cloud Accounts to Mine Cryptocurrency

Threat actors are exploiting improperly-secured Google Cloud Platform (GCP) instances to download cryptocurrency mining software to the compromised systems as well as abusing its infrastructure to install ransomware, stage phishing campaigns, and even generate traffic to YouTube videos for view count manipulation.
“While cloud customers continue to face a variety of threats across applications

Source: Read More (The Hacker News)

You might be interested in …

[SecurityWeek] Google Patches 19 Vulnerabilities in Chrome 95 Browser Refresh

All posts, Security Week

Google has released a new version of its flagship Chrome web browser with patches for a total of 19 vulnerabilities, including 16 reported by external researchers. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[SecurityWeek] GitHub Starts Scanning for Exposed Package Registry Credentials

All posts, Security Week

GitHub this week announced that it has started scanning code hosted on its platform for package registry credentials, including RubyGems and PyPI secrets. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[SANS ISC] ISC Stormcast For Thursday, January 27th, 2022 https://isc.sans.edu/podcastdetail.html?id=7854, (Thu, Jan 27th)

All posts, Sans-ISC

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Source: Read More (SANS Internet Storm Center, InfoCON: green)

Read More