Google Calendar Is a Potential Tool for Hackers to Control Malware

Google has warned that hackers may be able to exploit Google Calendar to send commands to malware planted on IT systems. Previous hacking methods have included hosting command-and-control (C2) commands on Dropbox or Amazon Web Services, while Google Drive and Gmail have also been used. Future threats may include Google Calendar RAT, where C2 commands are placed in the event description of a calendar entry. The service has yet to be exploited in this way, but the proof of concept has appeared on underground forums, indicating future interest.