This emerging threat allows attackers to circumvent traditional email security measures by exploiting the trusted status of notifications from recognized platforms. Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. Their investigation revealed that GetShared has gained significant popularity among scammers seeking new platforms to exploit after security improvements in previously targeted services like Google Calendar and Dropbox. Most organizations implement robust filtering at the email gateway level, but legitimate notifications from trusted services like GetShared typically pass through these defenses unimpeded. Cybercriminals have discovered a new attack vector utilizing the legitimate file-sharing service GetShared to distribute malware and conduct phishing campaigns. The technique represents an evolution in threat actors’ methodologies as they continue to adapt to improved security controls at the email gateway level. With years of experience under his belt in Cyber Security, he is covering Cyber Security News, technology and other news. What makes this attack vector particularly dangerous is its ability to bypass traditional email security measures. Security experts recommend implementing comprehensive staff training and deploying endpoint protection capable of detecting behavioral anomalies rather than relying solely on signature-based detection. In some instances, rather than delivering malware immediately, attackers distribute text files containing instructions that initiate social engineering tactics to further develop the attack. While some campaigns distribute obvious malware executables, others employ archive files containing seemingly innocuous documents that execute malicious scripts when opened. The accompanying messages often employ classic phishing tactics, such as inquiries about pricing for items supposedly included in the attachment, along with requests for delivery time and payment details to create a sense of legitimacy. Tushar is a Cyber security content editor with a passion for creating captivating and informative content. This multi-stage approach reduces the likelihood of detection by security solutions that scan for known malicious signatures. When users click the “Download” button in these notifications, they are directed to GetShared’s platform where the malicious payload awaits.
This Cyber News was published on cybersecuritynews.com. Publication date: Wed, 30 Apr 2025 08:10:08 +0000