PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing
PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing
22 July 2024
A Latin America (LATAM)-based financially motivated actor codenamed FLUXROOT has been observed leveraging Google Cloud serverless projects to orchestrate credential phishing activity, highlighting the abuse of the cloud computing model for malicious purposes.
"Serverless architectures are attractive to developers and enterprises for their flexibility, cost effectiveness, and ease of use," Google