all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

OneNote Embedded URL Abuse

Add to bookmarks
March 27, 2023, 7 a.m. | Nicholas Dhaeyer

NVISO Labs blog.nviso.eu

Whilst Microsoft is fixing the embedded files feature in OneNote I decided to abuse a whole other feature. Embedded URLs. Turns out this is something they may also have to fix.

abuse blue team credential harvesting cyber threats embedded files fix maldoc malware may microsoft onenote phishing phsihing qbot soc threat hunting threathunting url urls

Visit resource

More from blog.nviso.eu / NVISO Labs

Format String Exploitation: A Hands-On Exploration for Linux 1 week, 2 days ago | blog.nviso.eu
application security awareness binary exploitation capture +17
Top things that you might not be doing (yet) in Entra Conditional Access – Advanced … 2 months, 2 weeks ago | blog.nviso.eu
access advanced azure azure ad +16
Unpacking Flutter hives 2 months, 2 weeks ago | blog.nviso.eu
access app applications application security +22
Become Big Brother with Microsoft Purview 2 months, 3 weeks ago | blog.nviso.eu
big big brother can companies +31
Covert TLS n-day backdoors: SparkCockpit & SparkTar 3 months ago | blog.nviso.eu
amp applications backdoor backdoors +17
Top things that you might not be doing (yet) in Entra Conditional Access 3 months ago | blog.nviso.eu
access azure azure ad b2b +20
Is the Google search bar enough to hack Belgian companies? 4 months, 1 week ago | blog.nviso.eu
applications application security awareness belgium +27
Deobfuscating Android ARM64 strings with Ghidra: Emulating, Patching, and Automating 4 months, 2 weeks ago | blog.nviso.eu
android app application security arm64 +16
Scaling your threat hunting operations with CrowdStrike and PSFalcon 5 months, 2 weeks ago | blog.nviso.eu
agent aid automation blue +22

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com