all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

OneNote, Many Problems? The New Phishing Framework

Add to bookmarks
March 21, 2023, 1:55 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

There are plenty of phish in the digital sea, and attackers are constantly looking for new bait that helps them bypass security perimeters and land in user inboxes.


Their newest hook? OneNote documents. First noticed in December 2022, this phishing framework has seen success in fooling multiple antivirus (AV) tools by using .one file extensions, and January 2023 saw an attack uptick as compromises continued.


While this novel notes approach will eventually be phased out as phishing defenses catch up, …

antivirus attack attackers bypass december digital documents extensions framework january novel onenote phish phishing problems security tools

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Talos discloses multiple zero-day vulnerabilities, two of which could lead to code execution an hour ago | malware.news
arbitrary code arbitrary code execution cisco cisco talos +19
Big Vulnerabilities in Next-Gen BIG-IP 2 hours ago | malware.news
accounts assets attacker attackers +13
Proactive cybersecurity emphasized by new Vermont CISO 2 hours ago | malware.news
article chief chief information security officer ciso +27
Guilty plea entered by e-BTC operator for money laundering 2 hours ago | malware.news
alexander vinnik article btc btc-e +19
Google unveils new Threat Intelligence platform 2 hours ago | malware.news
article cloud cybersecurity cybersecurity threats +20
Thwarted cyberattack targeted Library of Congress in tandem with October British Library breach 3 hours ago | malware.news
authentication breach british british library +13
Nearly 150K impacted by Kansas court system hack 3 hours ago | malware.news
administration article attack case +18
Economic, societal complexity fuels cybersecurity threats, says ONCD 3 hours ago | malware.news
advancements adversaries article competition +15
CISA extends CIRCIA rule comment period 3 hours ago | malware.news
act agency article circia +27

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior PAM Security Engineer

@ Experian | Hyderabad, India
View on infosec-jobs.com

Cybersecurity Analyst II

@ Spry Methods | Washington, DC (Hybrid)
View on infosec-jobs.com

Cyber Security Engineer

@ Expleo | Gothenburg, AC, Sweden
View on infosec-jobs.com

Cybersecurity – Information System Security Manager (ISSM)

@ Boeing | USA - Albuquerque, NM
View on infosec-jobs.com

Senior Security Engineer - Canada

@ DataVisor | Ontario, Canada - Remote
View on infosec-jobs.com

Cybersecurity Architect

@ HARMAN International | JP Tokyo 3-5-7 Ariake Koto-ku
View on infosec-jobs.com
View more jobs