Google Drive security flaw allows data to be stolen without trace

Cloud incident response company Mitiga has released research on a significant forensic security deficiency in Google Workspace that enables threat actors to exfiltrate data in Google Drive without any trace. Data theft is one of the most common motives for attack, and with more than six million businesses using Google Workspace -- including Google Drive -- the cloud-based repository has been a prime target for data exfiltration. If you have a paid license, Google Workspace provides visibility into a company's Google Drive resources using 'Drive log events', for actions such as copying, deleting, downloading, and viewing files. However, by default… [Continue Reading]