GTC A.I CyberSecurity Scoring
GTC
Company Information
Website:https://translate.google.com/intl/en/about/contribute.html
Employees number:79
Number of followers:2,007
NAICS:513
Industry Type:Technology, Information and Internet
Homepage:google.com
GTC Risk Score (AI oriented)
Between 700 and 749
GTCTechnology, Information and Internet
Updated:
04/04/2026
04/04/2026
736/1000
Moderate
Ba
GTC Global Score (TPRM)
xxxx
GTCTechnology, Information and Internet
Score locked

GTCModerate
Current Score
736Ba (MODERATE)
01000
1 incidents
-31 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
737
JUNE 2026
737
MAY 2026
736
APRIL 2026
736
MARCH 2026
766
Cyber Attack
03 Mar 2026 • GTC
Google: Hackers Use GTFire Phishing Attack to Steal Credentials via Google Services
GTFire Phishing Campaign Exploits Google Services to Steal Credentials
735
HIGH-31
GOO1772541330
GTFire Phishing Campaign Exploits Google Services to Steal Credentials
A newly uncovered phishing campaign, dubbed GTFire, is leveraging trusted Google services including Firebase and Google Translate to bypass security defenses and harvest user credentials on a global scale.
Discovered by cybersecurity firm Group-IB, the campaign exploits Google’s infrastructure to host malicious login pages and disguise phishing URLs. Attackers use Firebase’s .web.app subdomains, which are commonly associated with legitimate development projects, to host fake login pages that mimic corporate branding. Meanwhile, Google Translate acts as a proxy, cloaking phishing links within the translate.goog domain to evade detection by email and web security filters.
The attack follows a multi-step redirection process, making it difficult for security systems to flag malicious activity. Once victims land on the Firebase-hosted phishing page, they are prompted to enter credentials, with incorrect attempts triggering repeated login prompts to maximize data collection. Stolen credentials are Base64-encoded and transmitted via HTTP GET requests to attacker-controlled command-and-control (C2) servers, along with metadata such as the victim’s email, location, and browser language.
The campaign employs pre-packaged PHP phishing scripts hosted on LiteSpeed Web Servers, enabling rapid scaling without custom development for each target. Group-IB’s research indicates the operation is highly organized, with stolen data segmented by date, brand, and language.
GTFire highlights the growing trend of threat actors abusing trusted cloud services to evade detection, underscoring the need for organizations to reassess traditional security trust models.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
FEBRUARY 2026
766
JANUARY 2026
766
DECEMBER 2025
766
NOVEMBER 2025
766
OCTOBER 2025
766
SEPTEMBER 2025
766
AUGUST 2025
766
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for GTC ??
What was GTC's A.I Rankiteo Cyber Score in June 2026 ??
What was GTC's A.I Rankiteo Cyber Score in May 2026 ??
What was GTC's A.I Rankiteo Cyber Score in April 2026 ??
What was GTC's A.I Rankiteo Cyber Score in March 2026 ??
What was GTC's A.I Rankiteo Cyber Score in February 2026 ??
What was GTC's A.I Rankiteo Cyber Score in January 2026 ??
What was GTC's A.I Rankiteo Cyber Score in December 2025 ??
What was GTC's A.I Rankiteo Cyber Score in November 2025 ??
What was GTC's A.I Rankiteo Cyber Score in October 2025 ??
What was GTC's A.I Rankiteo Cyber Score in September 2025 ??
What was GTC's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on GTC's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with GTC ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view GTC's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?