Google Threat Intelligence
Coverage of Google Threat Intelligence in the Nexus archive.
- Pink is the latest goon squad to use fake helpdesk calls to steal creds
Pink, a new extortion group possibly rebranded from BlackFile, uses voice phishing and fake helpdesk calls to steal credentials and extort organizations. Palo Alto Networks' Unit 42 and Google Threat Intelligence debate whether Pink is a new threat or an evolution of UNC6671, with similar tactics to groups like Lapsus$ and Scattered Spider.
- House panel poised to hold hearing centered on AI impact on cyber
A House subcommittee will hold a June 4 hearing focused on the impact of artificial intelligence on cybersecurity, featuring witnesses from Google, the Frontier Model Forum, Corridor Security, and the Electronic Frontier Foundation. Subcommittee chairman Andy Ogles emphasized the need to address AI-enabled cyber threats and maintain U.S. leadership in AI technology.
- Vercel’s security breach started with malware disguised as Roblox cheats
Vercel experienced a security breach where attackers used malware disguised as Roblox cheats to compromise an employee's device at Context.ai, leading to stolen credentials and access to Vercel environments. The attack exploited interconnected systems and overly privileged permissions, with threat group ShinyHunters claiming responsibility and attempting to sell stolen data.