all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How Threat Actors Embed Files in OneNote Documents

Add to bookmarks
March 16, 2023, 7:22 p.m. | Cofense

Cofense cofense.com

Beginning in December 2022, Microsoft Office OneNote (.one) files have been used in malicious emails to deliver multiple malware families, including the well-known QakBot and Emotet. Threat actors have likely been experimenting with .one files as an alternative to Office macros, which are now becoming less common. Word and Excel documents with Office macros were […]


The post How Threat Actors Embed Files in OneNote Documents appeared first on Cofense.

cofense december documents emails emotet excel files macros malicious malware microsoft microsoft office office office macros onenote qakbot threat threat actors well-known word

Visit resource

More from cofense.com / Cofense

Phishing Detection and Response: What You Need to Know 1 week, 2 days ago | cofense.com
and response critical cybersecurity cybersecurity posture +22
Agent Tesla: The Punches Keep Coming 1 week, 2 days ago | cofense.com
agent agent tesla analysis as-a-service +14
Recently Updated Rhadamanthys Stealer Delivered in Federal Bureau of Transportation Campaign 2 weeks, 2 days ago | cofense.com
advanced as-a-service bureau campaign +26
Midnight Blizzard APT Group’s Attack on Microsoft and What It Means for Email Security 4 weeks, 2 days ago | cofense.com
apt apt group attack blizzard +22
New Cofense Vision UI Dashboard Unveiled: Actionable ROI at a Glance 4 weeks, 2 days ago | cofense.com
actionable assets attacks cofense +19
Car Insurance SVG Files Abused In Emerging Campaigns 1 month ago | cofense.com
advanced campaigns car car insurance +15
SVG Files Abused in Emerging Campaigns 1 month ago | cofense.com
advanced campaigns deliver malware delivery +13
Annual State of Email Security by the Numbers 1 month, 1 week ago | cofense.com
bypassing customers email email security +15
Car Insurance Emails Drives for NetSupport RAT Infection 1 month, 1 week ago | cofense.com
basic campaign car car insurance +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Junior Cybersecurity Triage Analyst

@ Peraton | Linthicum, MD, United States
View on infosec-jobs.com

Associate Director, Operations Compliance and Investigations Management

@ Legend Biotech | Raritan, New Jersey, United States
View on infosec-jobs.com

Analyst, Cyber Operations Engineer

@ BlackRock | SN6-Singapore - 20 Anson Road
View on infosec-jobs.com

Working Student/Intern/Thesis: Hardware based Cybersecurity Training (m/f/d)

@ AVL | Regensburg, DE
View on infosec-jobs.com
View more jobs