Word – Page 2 – Computer Security Articles

Emotet 101, stage 1: The spam lure

March 5, 2019 admin 101, Bot, emotet, maldocs, malspam, malware, payload, PDF, Sophos101, SophosLabs, SophosLabs Uncut, spam, Word, XML

Credit to Author: Andrew Brandt| Date: Tue, 05 Mar 2019 13:55:43 +0000

By SophosLabs Research Emotet operates on a mass scale. Everything it does, it does in bulk. A typical infection begins when the victim receives a specially crafted spam email. Emotet’s creators send these out by the thousands and, in some cases, the bots themselves send more. The lures employ mass-created malicious document files. The payload […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/7i2oOO4OT8A” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Flurry of new Mac malware drops in December

December 11, 2018 admin backdoors, Mac, mac malware, macros, Microsoft Word, Social engineering, Threat analysis, Word

Credit to Author: Thomas Reed| Date: Tue, 11 Dec 2018 16:00:00 +0000

Multiple new pieces of Mac malware have appeared in December, all distributed through different means, but all opening backdoors on infected computers.

Categories:

Tags: backdoors mac malware macros microsoft word Social Engineering word

(Read more…)

The post Flurry of new Mac malware drops in December appeared first on Malwarebytes Labs.

Security Sophos

Malicious doc “builders” abandon old exploits wholesale

September 11, 2018 admin CVE-2012-0158, CVE-2017-0199, CVE-2017-11882, CVE-2018-0802, CVE-2018-4878, document, downloader, dropper, editor, Equation, Excel, maldoc, maldocs, malware, microsoft, MSCOMCTL.OCX, office, PowerPoint, RTF, SophosLabs Uncut, weaponized, Word

Credit to Author: Gabor Szappanos| Date: Tue, 11 Sep 2018 16:15:26 +0000

A key piece of the malware ecosystem adopts new vulnerabilities, and scraps old exploits, in record time<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/gKMCGkmvrcQ” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Old MS Office feature weaponized in malspam attacks

October 17, 2017 admin DDE, DDEAUTO, macro, malspam, malware, microsoft, office, Threat analysis, Word

Credit to Author: Jérôme Segura| Date: Tue, 17 Oct 2017 15:00:16 +0000

An old Microsoft Office feature has been brought back to the forefront as way to distribute malware without relying on macros or exploits.

Categories:

Tags: DDE DDEAUTO macro malspam malware microsoft Office word

MalwareBytes Security

Fake IRS notice delivers customized spying tool

September 21, 2017 admin CP2000, CVE-2017-0199, doc, exploit, irs, malspam, malware, office, phishing, Rat, remote administration tool, RMS, spy, Threat analysis, Word

Credit to Author: Jérôme Segura| Date: Thu, 21 Sep 2017 15:00:24 +0000

Threat actors leverage a Microsoft Office exploit to spy on their victims. In this blog post, we will review its delivery mechanism and analyze the malware we observed, a modified version of a commercial Remote Administration Tool (RAT).

Categories:

Tags: CP2000 CVE-2017-0199 doc exploit IRS malspam malware Office phishing rat remote administration tool RMS spy word

(Read more…)

The post Fake IRS notice delivers customized spying tool appeared first on Malwarebytes Labs.

MalwareBytes Security