ElevenPaths discovers a new form of Gmail service abuse for data exfiltration
Did you know that malware samples that use email services as covert channels for data exfiltration are becoming part of advanced persistent attacks?
At Eleven Paths we discovered a new form of abuse regarding aliases from the Gmail email service that could be used by data exfiltration tools.
With this new abuse technique directed at Gmail email services, new possibilities are being discovered for using the service as a covert channel. Though the use of this approach has not been proven, it is important to consider establishing security measures that enables data protection for data that both individuals and organisations or governmental classes store in their systems.
Mitigation of this threat is very difficult, which could force the proposal of new strategies and elements aimed at defending against advanced malware. That’s why Our expert team recommends caution when considering Gmail domains as reliable.