Quite surprised at the lack of some other GCP stuff in that list, to be honest. I've been seeing quite a bit of crap arriving, courtesy of SendGrid, from fake apps running on an appspot subdomain.
Digital rogues are shunning Microsoft in favour of Google when it comes to launching branded spear-phishing attacks, according to threat intel firm Barracuda Networks. The outfit reckons malicious people abusing Google services such as Drive, Docs and Cloud managed to launch 65,000 attacks between January and April. "Of the …
Monday 1st June 2020 04:44 GMT Kevin McMurtrie
Send your complaints of illegal activity to our bot
I've started checking how long phishing resources remain active on Google. It's about 7 months. Google's own search engine has indexed lists of Google's own resources being listed on multiple phishing blacklists, and the accounts are still alive. Google is usually #1 on Spamhaus for C&C hosting.