"PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing"

"FLUXROOT," a Latin America (LATAM)-based financially motivated actor, has used Google Cloud serverless projects to conduct credential phishing, bringing further attention to the abuse of cloud computing. In another attack on Brazilian users, an adversary named "PINEAPPLE" has used Google's cloud infrastructure to spread "Astaroth" stealer malware, also known as "Guildma." This article continues to discuss the abuse of Google Cloud by FLUXROOT and PINEAPPLE hacker groups.

THN reports "PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing"

Submitted by grigby1
 

Submitted by Gregory Rigby on