Black Hills InfoSec

Google Calendar Event Injection with MailSniper

BHIS · 2017-11-01 · Read original ↗

ATT&CK techniques detected

3 predictions

T1566.002Spearphishing Link

75%

"checking where the source of the event creation came from, it was discovered that the event was generated from an email that had been sent. a coworker had sent their flight itinerary in an email, and google thought these details were a different bhis employee ’ s itinerary, and a…"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1566.002Spearphishing Link

71%

"through calendar event may be more successful. event injection & social engineering possibly the most interesting element of the calendar is that it can create a sense of urgency simply by alerting a user to something. perhaps the user completely “ forgot ” they had a meeting sch…"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1566.002Spearphishing Link

34%

"a google user ’ s calendar without them ever receiving a notification. this presents a very unique opportunity for social engineering google users. black hills information security reported this issue to google. see the section titled “ timeline of disclosure ” below for details.…"

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

Summary

Beau Bullock & Michael Felch // Source: https://chrome.google.com/webstore/detail/google-calendar-by-google/gmbgaklkmjakoegficnlkhebmhkjfich Overview Google Calendar is one of the many features provided to those who sign up for a Google account along with other popular […]

The post Google Calendar Event Injection with MailSniper appeared first on Black Hills Information Security, Inc..