The Cloud Consultancy Europe Ltd.
+44 (0) 203 637 6667 [email protected]

Cybersecurity researchers have noticed a sharp increase in phishing attacks that rely on Google’s open redirects using Google Meet and Google DoubleClick.

The use of the open redirects allows threat actors to camouflage malicious links as trustworthy ones and get them past a majority of email security solutions.

“Most email security solutions are not able to identify the misuse of open redirects when analyzing the URL in real-time….Threat actors use authentic and trustworthy domains that allow open redirects, such as Google, to more effectively trick users into clicking a link and falling victim to the attack,” explain researchers from email threat protection platform, GreatHorn.

The researchers add that unless the complete URL has been identified as “known bad”, the links will have trouble floating into the inbox.

Murky waters

GreatHorn claims that between Q1 2021 and Q2 2021, there has been an 84% increase in phishing attacks that leverage Google’s open redirects using Google Meet and Google DoubleClick.

These attacks are primarily focused on getting users to fall victim to credential harvesting, payment fraud and auto-downloads of malware.

While Google DoubleClick abuse registered a 141% increase, Google Meet saw an increase of 57% as compared to the previous quarter.

The researchers suggest that abusing Google DoubleClick isn’t new, and in fact, the platform has nurtured this vulnerability since 2008.

Source: TechRadar

Protect your environment from Ransomware attacks.

Educating yourself and your employees with Cyber Security Awareness Training is the best way to start ensuring your business is protected from cyber-attacks.

Learn more about how The Cloud Consultancy can address and manage your businesses Cyber Security headaches. We can now provision boutique, pro-active, IT support services 24/7/365