ADVERTISEMENT

China-linked hackers hide cyber spy operation inside Windows services and Google Drive

A cyber espionage campaign linked to the China-nexus hackers, tracked as Silver Dragon, has been uncovered, hiding inside legitimate Windows services and using Google Drive as a covert communications channel.

google_drive_1129

Image by Shutterstock

Ann-Marie Corvin
Ann-Marie Corvin Senior Journalist
Mar 4, 2026 Updated: 5 March 2026 2 min read
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News
Add us as your Preferred Source on Google.
“This tactic allows the malware to blend into normal system activity. Because the service names appear legitimate, detection becomes more challenging, particularly in large environments where system services generate routine noise.”
Check Point Research

Custom backdoor uses Google Drive

ADVERTISEMENT

Check if your data has been leaked

Find out if your email, phone number or related personal information might have fallen into the wrong hands.
18,611,353,922
Breached accounts
36,030
Breached websites
  • SilverScreen: which captures screenshots of active user sessions
  • SSHcmd: which allows operators to run commands remotely and move files between systems

ADVERTISEMENT