New Delhi, August 24
Hackers might exploit an unpatched flaw in Google Drive to distribute malicious recordsdata disguised as reputable recordsdata on programs worldwide.
The Hacker News stories that Google is conscious of the newest safety subject that’s discovered within the “manage versions” performance in Google Drive.
The performance permits customers to add and handle totally different variations of a file.
A system administrator by the identify of A Nikoci allegedly reported the flaw to Google and later disclosed it to The Hacker News.
“The affected functionally allows users to upload a new version with any file extension for any existing file on the cloud storage, even with a malicious executable,” Nikoci stated.
Google was but to subject an official assertion on the report.
According to Nikoci, “a legitimate version of the file that’s already been shared among a group of users can be replaced by a malicious file”.
“Google lets you change the file version without checking if it’s the same type. They did not even force the same extension,” he was quoted as saying.
Google final week patched a safety bug that impacted each its Gmail and G Suite e-mail servers publicly disclosed by safety researcher Allison Husain.
Both Gmail and Drive confronted an unprecedented outage final week. Those affected took to social media, reporting points with opening attachments, failed logins and emails not touchdown of their inboxes. IANS