Attackers Use Microsoft Office Vulnerabilities to Spread Zyklon Malware

Hackers are exploiting three Microsoft Office vulnerabilities to spread the Zyklon HTTP malware . Continue reading Attackers Use Microsoft Office Vulnerabilities to Spread Zyklon Malware

Microsoft Patches 20 Critical Vulnerabilities

This month, Microsoft’s Patch Tuesday updates tackle fixes for 53 security bugs in Windows, Office, Internet Explorer, Edge, ASP.NET Core, .NET Core, and its Chackra Core browser engine. Continue reading Microsoft Patches 20 Critical Vulnerabilities

Fancy Bear Adopts New DDE Attack Against Microsoft Office

Russian cyberespionage group Fancy Bear is using a recently publicized technique that abuses a legitimate Microsoft Office feature to create documents that can install malware. For the past several years the most common method of embedding malicious co… Continue reading Fancy Bear Adopts New DDE Attack Against Microsoft Office

A week in security (October 16 – October 22)

A compilation of notable security news and blog posts from Monday, October 16 to Sunday, October 22. We talked about adware and malware in Google Play, a ransomware exclusively targeting South Korea, BYOD, a new 419 scam, cyptocurrency mining, and more.

Categories:

Tags:

(Read more…)

The post A week in security (October 16 – October 22) appeared first on Malwarebytes Labs.

The post A week in security (October 16 – October 22) appeared first on Security Boulevard.

Continue reading A week in security (October 16 – October 22)

MS Office Built-in Feature Allows Malware Execution Without Macros Enabled

Since new forms of cybercrime are on the rise, traditional techniques seem to be shifting towards more clandestine that involve the exploitation of standard system tools and protocols, which are not always monitored.

Security researchers at Cisco’s Ta… Continue reading MS Office Built-in Feature Allows Malware Execution Without Macros Enabled