Attackers may deceive you to install malware for a Google Drive flaw
Skip to main content
  • Home
  • Economy
    • Aviation
    • Bazaar
    • Budget
    • Industry
    • NBR
    • RMG
    • Corporates
  • Stocks
  • Analysis
  • World+Biz
  • Sports
  • Features
    • Book Review
    • Brands
    • Earth
    • Explorer
    • Fact Check
    • Family
    • Food
    • Game Reviews
    • Good Practices
    • Habitat
    • Humour
    • In Focus
    • Luxury
    • Mode
    • Panorama
    • Pursuit
    • Wealth
    • Wellbeing
    • Wheels
  • Epaper
  • More
    • Subscribe
    • Videos
    • Thoughts
    • Splash
    • Bangladesh
    • Supplement
    • Infograph
    • Archive
    • COVID-19
    • Games
    • Long Read
    • Interviews
    • Offbeat
    • Podcast
    • Quiz
    • Tech
    • Trial By Trivia
    • Magazine
  • বাংলা
The Business Standard

Monday
January 30, 2023

Sign In
Subscribe
  • Home
  • Economy
    • Aviation
    • Bazaar
    • Budget
    • Industry
    • NBR
    • RMG
    • Corporates
  • Stocks
  • Analysis
  • World+Biz
  • Sports
  • Features
    • Book Review
    • Brands
    • Earth
    • Explorer
    • Fact Check
    • Family
    • Food
    • Game Reviews
    • Good Practices
    • Habitat
    • Humour
    • In Focus
    • Luxury
    • Mode
    • Panorama
    • Pursuit
    • Wealth
    • Wellbeing
    • Wheels
  • Epaper
  • More
    • Subscribe
    • Videos
    • Thoughts
    • Splash
    • Bangladesh
    • Supplement
    • Infograph
    • Archive
    • COVID-19
    • Games
    • Long Read
    • Interviews
    • Offbeat
    • Podcast
    • Quiz
    • Tech
    • Trial By Trivia
    • Magazine
  • বাংলা
MONDAY, JANUARY 30, 2023
Attackers may deceive you to install malware for a Google Drive flaw

Tech

TBS Report
23 August, 2020, 09:05 am
Last modified: 23 August, 2020, 01:33 pm

Related News

  • Twitter hacked, 200 million user email addresses leaked, researcher says
  • Iran's atomic energy organization says e-mail was hacked
  • Iran state TV hacked with image of supreme leader in crosshairs
  • What to do if you were a corporate hack victim
  • Hacker claims to have stolen 1B records of Chinese citizens from police

Attackers may deceive you to install malware for a Google Drive flaw

The cloud storage service reportedly doesn’t check to see if a file is of the same type, or even enforce the same extension

TBS Report
23 August, 2020, 09:05 am
Last modified: 23 August, 2020, 01:33 pm
Photo: Getty Images via Engadget
Photo: Getty Images via Engadget

There is way in Google Drive which can let hackers trick you to install rogue code.

Attackers can swap a file with malware allowed by a feature called "manage versions", a flaw in the drive, according to System Administrator A Nikoci, reports Engadget.

The cloud storage service reportedly doesn't check to see if a file is of the same type, or even enforce the same extension. An innocuous cat photo may be a program in disguise.

Google turning smartphones into earthquake detectors

The online preview doesn't hint at any changes or raise alarms, so you might not know there's a problematic file until you've already installed it. Chrome seems to "implicitly trust" the Drive downloads even when other antivirus programs detect something amiss.

The approach could be used for spear phishing attacks that trick users into compromising their systems. You might get a notification of a document update and grab the file without realizing the threat.

Nikoci said he notified Google about the issue, but that it was still unpatched as of August 22nd. We've asked Google for comment.

This would mainly be useful for attacking companies that rely on Google Drive for sharing documents, but that's increasingly common. The description also suggests that this would require a significant change to Drive's version control. For now, the best solutions may be to use antivirus software and be wary of Google Drive file update alerts, especially if you weren't expecting them.

Top News

google drive / hack

Comments

While most comments will be posted if they are on-topic and not abusive, moderation decisions are subjective. Published comments are readers’ own views and The Business Standard does not endorse any of the readers’ comments.

Top Stories

  • Photo: Collected
    Economic slump drags down growth in VAT collection from big cos
  • It's corruption that bites business harder: CPD
    It's corruption that bites business harder: CPD
  • Photo: Masum Billah/TBS
    How the Padma Bridge motorbike ban spawned a new business

MOST VIEWED

  • Rendered images by DALL-E 2 from the text prompt: “a hydrogen fueled plane, digital art.”
    Could hydrogen-powered aeroplanes be the future of aviation?
  • Illustration: TBS
    AI tools beyond ChatGPT and DALL-E 2
  • Twitter says users will be able to appeal account suspension
    Twitter says users will be able to appeal account suspension
  • Bye bye! Photographer: Michael Zarrilli/Getty Images North America via Bloomberg
    Meta says Trump to be allowed back on Facebook, Instagram
  • A view of the Twitter logo at its corporate headquarters in San Francisco, California, U.S. November 18, 2022. REUTERS/Carlos Barria
    Twitter faces legal complaint in Germany over anti-Semitic content
  • Silhouettes of laptop and mobile device users are seen next to a screen projection of Microsoft logo in this picture illustration taken March 28, 2018. REUTERS/Dado Ruvic/Illustration/File Photo
    Microsoft cloud outage hits users around the world

Related News

  • Twitter hacked, 200 million user email addresses leaked, researcher says
  • Iran's atomic energy organization says e-mail was hacked
  • Iran state TV hacked with image of supreme leader in crosshairs
  • What to do if you were a corporate hack victim
  • Hacker claims to have stolen 1B records of Chinese citizens from police

Features

Photo: Courtesy

The Hawkers: Where minimalism meets motifs

1h | Brands
Illustration: TBS

Where do Shariah-compliant mutual funds stand in Bangladesh

35m | Panorama
Photo: Collected

Oppo Reno 8T first look revealed!

50m | Brands
Photo: Masum Billah/TBS

How the Padma Bridge motorbike ban spawned a new business

1h | Panorama

More Videos from TBS

Sarika Sabrin is waiting for a good film

Sarika Sabrin is waiting for a good film

15h | TBS Entertainment
Take your football game to the next level at Next Level academy

Take your football game to the next level at Next Level academy

16h | TBS SPORTS
“Investments risky without consistent policy, reliable data”- SK Bashir Uddin

“Investments risky without consistent policy, reliable data”- SK Bashir Uddin

18h | TBS Round Table
What does Shahrukh has in his 770 million dollar property?

What does Shahrukh has in his 770 million dollar property?

1d | TBS Entertainment

Most Read

1
Picture: Collected
Bangladesh

US Embassy condemns recent incidents of visa fraud

2
Illustration: TBS
Banking

16 banks at risk of capital shortfall if top 3 borrowers default

3
Bapex calls candidates for job test 9 years after advert!
Bangladesh

Bapex calls candidates for job test 9 years after advert!

4
Photo: Collected
Splash

Hansal Mehta responds as Twitter user calls him 'shameless' for making Faraaz

5
A frozen Beyond Burger plant-based patty. Photographer: AKIRA for Bloomberg Businessweek
Bloomberg Special

Fake meat was supposed to save the world. It became just another fad

6
Representational Image
Banking

Cash-strapped Islami, Al-Arafah and National turn to Sonali Bank for costly fund

EMAIL US
[email protected]
FOLLOW US
WHATSAPP
+880 1847416158
The Business Standard
  • About Us
  • Contact us
  • Sitemap
  • Privacy Policy
  • Comment Policy
Copyright © 2023
The Business Standard All rights reserved
Technical Partner: RSI Lab

Contact Us

The Business Standard

Main Office -4/A, Eskaton Garden, Dhaka- 1000

Phone: +8801847 416158 - 59

Send Opinion articles to - [email protected]

For advertisement- [email protected]