all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Google Warns How Hackers Could Abuse Calendar Service as a Covert C2 Channel

Add to bookmarks
Nov. 6, 2023, 8:25 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Google is warning of multiple threat actors sharing a public proof-of-concept (PoC) exploit that leverages its Calendar service to host command-and-control (C2) infrastructure.
The tool, called Google Calendar RAT (GCR), employs Google Calendar Events for C2 using a Gmail account. It was first published to GitHub in June 2023.
"The script creates a 'Covert Channel' by exploiting the event

abuse account calendar called channel command concept control covert events exploit github gmail google google calendar hackers host infrastructure poc proof proof-of-concept public rat service sharing threat threat actors tool warning

Visit resource

More from thehackernews.com / The Hacker News

FBI Seizes BreachForums Again, Urges Users to Report Criminal Activity 2 hours ago | thehackernews.com
bazaar breachforums bureau control +18
Google Launches AI-Powered Theft and Data Protection Features for Android Devices 3 hours ago | thehackernews.com
advanced aim ai-powered android +17
Android 15 Rolls Out Advanced Features to Protect Users from Scams and Malicious Apps 3 hours ago | thehackernews.com
advanced android api app +24
Turla Group Deploys LunarWeb and LunarMail Backdoors in Diplomatic Missions 7 hours ago | thehackernews.com
backdoors cyberespionage east eset +9
(Cyber) Risk = Probability of Occurrence x Damage 8 hours ago | thehackernews.com
address aim assessment automation +19
Ebury Botnet Malware Compromises 400,000 Linux Servers Over Past 14 Years 9 hours ago | thehackernews.com
advanced botnet called campaigns +9
It's Time to Master the Lift & Shift: Migrating from VMware vSphere to Microsoft Azure 9 hours ago | thehackernews.com
adoption announcements azure cloud +12
Dutch Court Sentences Tornado Cash Co-Founder to 5 Years in Prison for Money Laundering 11 hours ago | thehackernews.com
cash co-founder court cryptocurrency +18
Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days 13 hours ago | thehackernews.com
actively exploited critical exploited flaws +14

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Sr. Application Security Engineer

@ CyberCube | Tallinn
View on infosec-jobs.com

Security Incident Response Analyst

@ Oracle | KITCHENER, ON, Canada
View on infosec-jobs.com

Senior Security Engineer

@ Minitab | Americas Remote
View on infosec-jobs.com