Smash-and-grab: AstraLocker 2.0 pushes ransomware direct from Office docs | allinfosecnews.com

June 28, 2022, 2:46 p.m. | Joseph Edwards

Security Boulevard securityboulevard.com

ReversingLabs recently discovered instances of the AstraLocker 2.0 malware distributed directly from Microsoft Word files used in phishing attacks.

Executive Summary

ReversingLabs recently discovered of a new version of the AstraLocker ransomware (AstraLocker 2.0) that was being distributed directly from Microsoft Office files used as bait in phishing attacks. Our analysis suggests that the threat actor responsible for this campaign likely obtained the underlying code for AstraLocker 2.0 from a leak of the Babuk ransomware in September 2021. Links …

docs grab malware office ransomware research

More from securityboulevard.com / Security Boulevard

What is Network Pen Testing? 4 hours ago | securityboulevard.com

assessment attack cyber cyber security +27

RSAC 2024 Innovation Sandbox | The Future Frontline: Harmonic Security’s Data Protection in the AI … 6 hours ago | securityboulevard.com

benchmark blog conference cybersecurity +22

How to Migrate from FedRAMP Rev 4 to FedRAMP Rev 5 7 hours ago | securityboulevard.com

can development evolution fedramp +9

NodeZero: Testing for Exploitability of Palo Alto Networks CVE-2024-3400 10 hours ago | securityboulevard.com

advisory alto april cve +18

USENIX Security ’23 – LibScan: Towards More Precise Third-Party Library Identification for Android Applications 13 hours ago | securityboulevard.com

access android applications authors +20

N.A. Developers Optimistic About Generative AI and Code Security 13 hours ago | securityboulevard.com

ai security america can cloud security +34

Defending Against ArcaneDoor: How Eclypsium Protects Network Devices 13 hours ago | securityboulevard.com

actor adaptive security arcanedoor asa +27

AI Adoption Prompts Security Advisory from NSA 13 hours ago | securityboulevard.com

adoption advisory ai ai adoption +26

AI Data Poisoning: How Misleading Data Is Evading Cybersecurity Protections 13 hours ago | securityboulevard.com

ai cybersecurity ai data ai data poisoning ai security attacks +12

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Digital Trust Cyber Transformation Senior

@ KPMG India | Mumbai, Maharashtra, India

View on infosec-jobs.com

Security Consultant, Assessment Services - SOC 2 | Remote US

@ Coalfire | United States

View on infosec-jobs.com

Sr. Systems Security Engineer

@ Effectual | Washington, DC

View on infosec-jobs.com

Cyber Network Engineer

@ SonicWall | Woodbridge, Virginia, United States

View on infosec-jobs.com

Security Architect

@ Nokia | Belgium

View on infosec-jobs.com