all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

HTML smugglers turn to SVG images

Add to bookmarks
Dec. 13, 2022, 8:30 p.m. | Adam Katz

Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com

  • HTML smuggling is a technique attackers use to hide an encoded malicious script within an HTML email attachment or webpage.
  • Once a victim receives the email and opens the attachment, their browser decodes and runs the script, which then assembles a malicious payload directly on the victim’s device

html html smuggling images qakbot svg turn

Visit resource

More from blog.talosintelligence.com / Cisco Talos Intelligence Group - Comprehensive Threat Intelligence

Vulnerabilities in employee management system could lead to remote code execution, login credential theft 1 day ago | blog.talosintelligence.com
code code execution credential credential theft +21
Cisco Talos at RSAC 2024 2 days, 4 hours ago | blog.talosintelligence.com
announcements cisco cisco talos cybersecurity +12
James Nutland studies what makes threat actors tick, growing our understanding of the current APT … 3 days, 4 hours ago | blog.talosintelligence.com
adversary apt can current +14
The private sector probably isn’t coming to save the NVD 6 days, 22 hours ago | blog.talosintelligence.com
arcanedoor coming cybercrime isn +9
Talos IR trends: BEC attacks surge, while weaknesses in MFA persist 1 week ago | blog.talosintelligence.com
adversaries attacks bec bec attacks +17
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices 1 week, 1 day ago | blog.talosintelligence.com
apt campaign campaigns devices +15
Suspected CoralRaider continues to expand victimology using three information stealers 1 week, 2 days ago | blog.talosintelligence.com
apt argument bypass command +17
What’s the deal with the massive backlog of vulnerabilities at the NVD? 1 week, 6 days ago | blog.talosintelligence.com
backlog current deal management +10
Could the Brazilian Supreme Court finally hold people accountable for sharing disinformation? 1 week, 6 days ago | blog.talosintelligence.com
account blocked court disinformation +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Principal Business Value Consultant

@ Palo Alto Networks | Chicago, IL, United States
View on infosec-jobs.com

Cybersecurity Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

Penetration Testing Engineer- Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com

Internal Audit- Compliance & Legal Audit-Dallas-Associate

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com

Threat Responder

@ Deepwatch | Remote
View on infosec-jobs.com
View more jobs