all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Infostealer Embedded in a Word Document, (Thu, May 4th)

Add to bookmarks
May 4, 2023, 6:20 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

When attackers design malicious documents, one of their challenges is to make the potential victim confident to perform dangerous actions: click on a link, disable a security feature, etc. The best example is probably VBA macros in Microsoft Office documents. Disabled by default, the attacker must make the user confident to enable them by clicking on the “yellow ribbon” on top of the document.


Article Link: https://isc.sans.edu/diary/rss/29810


1 post - 1 participant


Read full topic

actions attackers challenges click default design disabled document documents embedded etc infostealer link macros malicious may microsoft microsoft office office security vba vba macros victim word word document

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

ISC Stormcast For Tuesday, April 16th, 2024 https://isc.sans.edu/podcastdetail/8940, (Tue, Apr 16th) 2 hours ago | malware.news
topic
Quick Palo Alto Networks Global Protect Vulnerablity Update (CVE-2024-3400), (Mon, Apr 15th) 5 hours ago | malware.news
alto article center cve +19
2024-04-15: Contact Forms campaign leads to SSLoad malware 5 hours ago | malware.news
analysis article campaign contact forms +7
CVE-2024-3400: Critical Vulnerability in GlobalProtect Feature of PAN-OS being Actively Exploited 5 hours ago | malware.news
actively exploited advisory alto april +23
CVE-2024-26234 for Windows and CVE-2024-29053 for Defender for IOT highlighted in Microsoft’s April 2024 Patch … 5 hours ago | malware.news
april arctic arctic wolf critical +19
CVE-2024-3400: Follow Up: Patches Released for Actively Exploited Critical Vulnerability in GlobalProtect Feature of PAN-OS 5 hours ago | malware.news
actively exploited actor address alto +30
From Idea to Success: How to Operationalize a Startup from Zero to Exit - Seth … 7 hours ago | malware.news
article exit idea link +3
Microsoft’s ‘AI Watchdog’ defends against new LLM jailbreak method 7 hours ago | malware.news
article attack jailbreak link +6
Delinea patches API vulnerability in Secret Server Cloud 10 hours ago | malware.news
access admin api api vulnerability +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Database Security Engineer, Assistant Vice President

@ MUFG | Tampa - 4050 West Boy Scout Blvd.
View on infosec-jobs.com

Senior IR & SecOps Engineer

@ JFrog | Tel Aviv
View on infosec-jobs.com

Consultant ITSCM / IT-Notfallmanagement (m/w/d)

@ Schwarz Gruppe | Berlin, DE
View on infosec-jobs.com

Freelancer Auditor Information Security - ISO 27001 - Netherlands

@ LRQA | Rotterdam, NL
View on infosec-jobs.com

GG9b-Assoc Eng II, Services

@ HARMAN International | IN Bengaluru EOIZ Indust Area Campus HCS
View on infosec-jobs.com
View more jobs