From securityweek.com
Google says it has disrupted phishing attacks in which threat actors were attempting to use cookie theft malware to hijack YouTube accounts and abuse them to promote cryptocurrency scams.
As part of these campaigns, which have been ongoing since 2019, hackers recruited on a Russian-speaking forum targeted thousands with phishing emails that promised fake collaboration opportunities.
The scammers sent their phishing messages to the email addresses that YouTube channel owners make public for business purposes, Google explains.
After gaining the target’s trust, the hackers would send a URL, either via email or a PDF on Google Drive, promising legitimate software but which instead took the victim to a malware landing page.