Google Apps may be allowing bad actors to install malware on your device via a security flaw.
Threat: The Google Apps Script, used for apps like Google Drive, has a security vulnerability that could allow hackers to deliver malware to a user’s computer using Google Drive URLs.
Damage risk: The vulnerability supports automatic downloads of malware and social engineering plans to convince users to run the malware once it’s been downloaded.
Exploited flaw: The ability to share documents via most Google Apps magnified the script’s vulnerability.
Fixes/Workarounds: Google added restrictions to Apps Script events that could be used to spread malware. Be careful when clicking links — even to a source like Google Docs if they’re sent from someone you don’t know.
Info: tinyurl.com/GA10518