Chinese Hackers Abused Google Workspace Rules to Steal Email
🟠 High | Source: The Hacker News A Chinese state-linked espionage group compromised North American medical, academic, and military research organisations by planting a backdoor on REDCap research data servers to harvest credentials. Once inside, the attackers manipulated Google Workspace email forwarding rules to silently copy and exfiltrate sensitive research and defence communications over an extended period. The attack is notable for its stealth and abuse of legitimate platform features, making detection significantly harder. ...