This flaw only affects users who do not have a paid Enterprise license for Google Workspace.
Users who do not have a paid Google Workspace license leave their Private Drive actions undocumented.
Cybersecurity researchers have discovered a critical forensic security flaw in Google Workspace that enabled a hacker to infiltrate data in Google Drive without trace.
According to researchers at Mitiga Security, once a malicious user has accessed an organization’s Google Drive, they can perform actions without being recorded.
This flaw only affects users who do not have a paid Enterprise license for Google Workspace.
Users who do not have a paid Google Workspace license leave their Private Drive actions undocumented.
Hackers can disable logging and recording by canceling their paid license and switching to the free “Cloud Identity Free” license.
This enables threat actors to exfiltrate files without leaving any trace except that a paid license was revoked, which is visible to administrators.
“A malicious actor who gains access to an admin user can revoke the user’s license, download all of their private files, and reassign the license,” the researchers said.
The experts also informed Google about their findings, which is yet to respond.
Meanwhile, hackers are targeting iPhones with previously unknown malware via iMessage, in a bid to gain complete control over iOS devices and spy on users.
Cyber security company Kaspersky discovered a mobile Advanced Persistent Threat (APT) campaign targeting iOS devices with previously unknown malware.
Dubbed as ‘Operation Triangulation’, the ongoing campaign distributes a zero-click exploit via iMessage to run malware to gain complete control over devices and user data, with the ultimate goal of “secretly attacking users”. espionage”.
(This story has not been edited by News18 staff and is published from a syndicated news agency feed – IANS,
