CloudFanta is suspected to have stolen more than 26,000 email credentials since it began operation in July 2016. The malware is stored on Sugarsync, which the attack uses for hosting drive-by-download files. Users are primarily targeted by an attachment or link, which appear in a spearphishing email. Traditional malware hosts malicious files on other servers, but cloud-based malware makes it easier for hackers to access malware everywhere, says Netskope Threat Research Labs’ Ravi Balupari. “We’ll definitely see a rise in cloud malware campaigns going forward,” he says.”]
Source: https://www.darkreading.com/cloud/cloudfanta-malware-targets-victims-via-cloud-storage-app