These campaigns make use of SSL certificates issued by Appspot.com and Web.app.

The attackers have designed similar-looking login pages for the domains which are widely used in business.

After Microsoft Azure domains, threat actors are now eyeing on Google cloud domains to launch the latest phishing attacks. The affected domains are those that leverage Appspot.com and Web.app.