Cybercriminals are using new sophisticated techniques to spread CSV malware via Google sheets instead of using Microsoft Excel sheet which is often used by malicious hackers.
Cyber attackers are day today increasing and the attackers are always one step ahead to launching sophisticated cyber attackers which is very difficult to detect and mitigate.
Basically .CSV files could be opened in MS Excel when you click on a common .CSV file and interprets cells contents.
In this case, the Attacker embedded the malware dropper within the Google spreadsheet to infect the users and its launching via spam emails.
Spreading the malware via Google Spread Sheet is create more trust among the normal peoples without bothering about who send it but security community never trust it.
Google basically implemented the sophisticated gMail and gDrive anti Malware techniques in order to avoid Malware spreading over its amazing technologies by avoiding specific file type (.exe, .dll, .zip, etc etc) over gMail.
But an attacker bypass this Google filter technique and they easily use Google Sheets as a Malware vector. anyhow, Google has been alerted about this issue but it confirmed that it’s actually an “Intended Behaviour”.
According to the researcher, Finally, an attacker could send a clear link over an instant message platform and/or over an email asking to open up a Google Sheets suggesting to the victim to open the spreadsheet locally since “MSExcel compatibility issues”. At that time if the victim downloads the Google sheets and opens up locally (with Microsoft), the attacker might infect her box”
Users need to aware of this kind of serious attacks, avoid to download links if you receive a link to a not working Google Sheets.
You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.
Security researchers at FortiGuard Labs discovered a new botnet in April that exploits a weakness in D-Link devices. Dubbed "Goldoon,"…
LayerX, pioneer of the LayerX Browser Security platform, today announced $24 million in Series A funding led by Glilot+, the…
Hackers use deep fake AI photos to impersonate individuals online, allowing them to deceive, manipulate, or gain unauthorized access to…
Cuttlefish is a new malware platform that has been identified to be active since at least July 2023. This malware…
Multiple vulnerabilities have been discovered in ArubaOS that affect HPE Aruba Networking devices, including Mobility Conductor, Mobility Controllers WLAN Gateways,…
While facilitating remote work, remote desktop software presents security challenges for IT teams due to the use of various tools…