all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Threat Spotlight: XLLing in Excel - threat actors using malicious add-ins

Add to bookmarks
Dec. 20, 2022, 1 p.m. | Vanja Svajcer

Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com

As more and more users adopt new versions of Microsoft Office, it is likely that threat actors will turn away from VBA-based malicious documents to other formats such as XLLs or rely on exploiting newly discovered vulnerabilities to launch malicious code.

excel malicious securex spotlight threat threat actors threats threat spotlight

Visit resource

More from blog.talosintelligence.com / Cisco Talos Intelligence Group - Comprehensive Threat Intelligence

A new alert system from CISA seems to be effective — now we just need … 17 hours ago | blog.talosintelligence.com
alert alerts catalog cisa +12
Talos discloses multiple zero-day vulnerabilities, two of which could lead to code execution 1 day, 19 hours ago | blog.talosintelligence.com
arbitrary code arbitrary code execution code code execution +14
What can we learn from the passwords used in brute-force attacks? 1 week ago | blog.talosintelligence.com
attacks brute brute-force can +5
Vulnerabilities in employee management system could lead to remote code execution, login credential theft 1 week, 1 day ago | blog.talosintelligence.com
code code execution credential credential theft +21
Cisco Talos at RSAC 2024 1 week, 2 days ago | blog.talosintelligence.com
announcements cisco cisco talos cybersecurity +12
James Nutland studies what makes threat actors tick, growing our understanding of the current APT … 1 week, 3 days ago | blog.talosintelligence.com
adversary apt can current +14
The private sector probably isn’t coming to save the NVD 2 weeks ago | blog.talosintelligence.com
arcanedoor coming cybercrime isn +9
Talos IR trends: BEC attacks surge, while weaknesses in MFA persist 2 weeks ago | blog.talosintelligence.com
adversaries attacks bec bec attacks +17
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices 2 weeks, 1 day ago | blog.talosintelligence.com
apt campaign campaigns devices +15

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cybersecurity Engineer III

@ Hexagon US Federal | Huntsville, AL
View on infosec-jobs.com

Cybersecurity Technical Advisor

@ Microsoft | Reading, Berkshire, United Kingdom
View on infosec-jobs.com

Cybersecurity Engineer

@ Mindvalley | Kuala Lumpur, Kuala Lumpur, Malaysia
View on infosec-jobs.com

Network Security (Meraki) Infrastructure Lead

@ Sopra Steria | Noida, Uttar Pradesh, India
View on infosec-jobs.com

Sr. Director, Product Security

@ Ro | New York City or Remote
View on infosec-jobs.com

Senior Research Engineer, Cryptography (PhD Entry Level)

@ Seagate Technology | Shakopee, MN, US
View on infosec-jobs.com
View more jobs