Google Warns of TRIPLESTRENGTH's Cyber Threats
/ 1 min read
🪙 Google warns of TRIPLESTRENGTH’s cryptojacking and ransomware threats. In its latest Threat Horizons Report, Google Cloud identified a financially motivated threat actor named TRIPLESTRENGTH, which targets cloud environments for cryptojacking and ransomware attacks. This group employs stolen credentials to hijack cloud resources for cryptocurrency mining and has been observed advertising access to compromised servers on Telegram. Notably, TRIPLESTRENGTH’s ransomware operations focus on on-premises resources, utilizing various ransomware types like Phobos and LokiLocker. Google has implemented measures such as multi-factor authentication and enhanced logging to mitigate these threats, emphasizing the risks posed by a single stolen credential that can lead to extensive access and exploitation of both cloud and on-premises infrastructures.
