Phishing campaign hijacks Google Firebase storage

Organisations worldwide are under serious threat from credential phishing campaigns. With the continuing growth of cloud technologies, threat actors are finding more and more innovative ways to harvest victims’ company credentials, which are then used to gain a corporate foothold.

A recent campaign uses Google Firebase storage URLs to harvest the victims’ information. Firebase Storage is backed by Google Cloud Storage and provides secure uploads and downloads of files for Firebase apps. The URLs are embedded in the phishing emails.