Google Apps Script Vulnerability Exposes Potential Malware Risks

Security firm Proofpoint on Jan. 4 warned of a new attack vector that could enable hackers to abuse Google Apps Script to exploit cloud users.

Google Apps Script is a JavaScript-based language used across the G Suite of applications, including Docs, Sheets, Slides and Forms. The purpose of the language is to help developers and organizations extend functionality in Google’s applications, enabling such things as custom menus and functions.

Proofpoint discovered a flaw with Google Apps Script that could allow an attacker to download malware onto a user’s system.

Read full news article on eWeek