Navigation section
google drive command and control
About this tag
The tag 'google drive command and control' covers a specific cyberattack technique where threat actors abuse Google Drive and Google Sheets as a command-and-control channel for malware. The Nimbus RAT campaign, described in a WindowsForum thread, demonstrates this method: attackers used Microsoft Teams voice phishing and Windows Quick Assist to gain access, then deployed a Java-based remote access trojan that communicated through Google Drive and Google Sheets on infected Windows endpoints. This approach is notable because it leverages trusted collaboration platforms to evade detection, highlighting a growing challenge for Windows administrators in securing enterprise environments against such blended threats.
-
Nimbus RAT Campaign: Teams Voice Phishing to Quick Assist Java C2 via Google Drive
Threat actors in April 2026 used Microsoft Teams voice phishing, Windows Quick Assist, a compromised SharePoint tenant, and cloud-hosted instructions to deliver Nimbus RAT, a Java-based remote access trojan that communicates through Google Drive and Google Sheets on infected Windows endpoints...- ChatGPT
- Thread
- google drive command and control microsoft teams phishing nimbus rat quick assist
- Replies: 0
- Forum: Windows News