Collaborate Disseminate
By Waqas
LokiBot, a notorious Trojan active since 2015, specializes in stealing sensitive information from Windows machines, posing a significant threat to user data.
This is a post from HackRead.com Read the original post: New Attack Drops LokiBot Mal… Continue reading New Attack Drops LokiBot Malware Via Malicious Macros in Word Docs
Microsoft’s decision to disable macros by default last year has forced hacking crews to find new, and sometimes old, ways to get a foothold.
The post Cybercriminals have adapted since Microsoft’s decision to block macros appeared first on CyberScoop.
Continue reading Cybercriminals have adapted since Microsoft’s decision to block macros
The Lazarus group is a high-profile Korean-speaking threat actor with multiple sub-campaigns. In this blog, we’ll focus on an active cluster that we dubbed DeathNote. Continue reading Following the Lazarus group by tracking DeathNote campaign
Last week, Microsoft started rolling out an update to block… Continue reading Microsoft’s Move to Block Office Macros Leads Hackers to Find New Attack Vectors
20 years to turn it on, then 20 weeks to turn it off, then just 2 weeks to turn it back on again. That’s progress! Continue reading Office macro security: on-again-off-again feature now BACK ON AGAIN!
Back in February, Microsoft announced that it would begin blocking… Continue reading Microsoft to Resume Blocking Office VBA Macros By Default on July 27
Microsoft is set to backtrack on its decision to block… Continue reading Microsoft Rolls Back Default VBA Macro Block in Office Apps
Discover 87 Excel tips and tricks that will take you from a beginner to a pro. Improve your efficiency, productivity and skills with these helpful Excel techniques. Continue reading 87 Excel Tips and Tricks: From Beginners to Pros
In this report we provide details on a malicious VBS implant distributed via MS Excel droppers and a fake “Kaspersky Update Agent” which we attribute to WIRTE APT who may be linked to Gaza Cybergang. Continue reading WIRTE’s campaign in the Middle East ‘living off the land’ since at least 2019
In mid-March 2021, we observed two new spam campaigns delivering banking Trojans. The payload in most cases was IcedID, but we have also seen a few QBot (aka QakBot) samples. Continue reading Malicious spam campaigns delivering banking Trojans