A new attack campaign called CLOUD#REVERSER exploits Google Drive and Dropbox to stage malicious payloads, starting with a phishing email using a Unicode trick to deceive victims into executing an executable disguised as an Excel file, which then drops multiple payloads, including scripts to establish persistence through scheduled tasks and connect to cloud accounts for further downloads, showcasing a growing trend of threat actors abusing legitimate services to infect systems, maintaining access, and using them for data exfiltration and command execution. ```
https://thehackernews.com/2024/05/malware-delivery-via-cloud-services.html