A Latin America (LATAM)-based financially motivated actor codenamed FLUXROOT has been observed leveraging Google Cloud serverless projects to orchestrate credential phishing activity, highlighting the abuse of the cloud computing model for malicious purposes.
« Serverless architectures are attractive to developers and enterprises for their flexibility, cost effectiveness, and ease of use, » Google