Macros - Security Intelligence

Man using a desktop computer: macro malware

article

How to Fight Back Against Macro Malware

Per X-Force IRIS, at least 22 percent of reported campaigns in April 2019 delivered macro malware. What methods can defenders leverage to help detect malicious macro activity?

May 20, 2019 | By Megan Roddie

article

news

Retefe Banking Trojan Returns With Smoke Loader as Its Intermediate Loader

The Retefe banking Trojan has resumed its activity with a new series of attack campaigns that leverage Smoke Loader as an intermediate loader.

May 7, 2019 | By David Bisson

news

Man working on a laptop in the office: TA505

news

New TA505 Phishing Campaign Using LOLBins to Distribute Backdoor Malware

A threat actor known as TA505 recently launched a phishing campaign that uses living-of-the-land binaries (LOLBins) to distribute a new backdoor malware.

April 29, 2019 | By David Bisson

news

news

Aggah Campaign Using Bit.ly, BlogSpot and Pastebin to Distribute RevengeRAT

Researchers spotted the operators of the Aggah campaign exploiting Bit.ly, BlogSpot and Pastebin to spread variants of the RevengeRAT malware in the Middle East, Asia, Europe and the U.S.

April 23, 2019 | By David Bisson

news

Security professional reading about the latest malware threats: malware

news

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

Digital attackers used more than a dozen web servers to host 10 malware families and distributed those threats using phishing emails.

April 9, 2019 | By David Bisson

news

Professional working on a laptop in the office targeted with Ursnif banking malware

news

Threat Actor Targets Japanese Users With New Ursnif Variant

Security researchers discovered an attack campaign targeting Japanese users with a new variant of Ursnif banking malware.

March 13, 2019 | By David Bisson

news

Woman checking email on mobile device as laptop starts up: qakbot malware

news

Geodo Botnets Using New Spam Campaign to Deliver Qakbot Malware

Researchers discovered Geodo botnets using a new spam campaign to deliver samples of Qakbot malware.

February 6, 2019 | By David Bisson

news

Woman working on laptop in a coffee shop: lcg kit

news

LCG Kit Document Builder Now Using Microsoft Word Macros to Install Malware Payloads

A weaponized document builder service known as LCG Kit added the ability to use Microsoft Word macros to load the necessary shellcode for installing malware.

December 20, 2018 | By David Bisson

news

Houses of Parliament and Big Ben: spear phishing attack

news

SNAKEMACKEREL Group Uses Brexit-Themed Spear Phishing Attack to Target Government Agencies

Analysts discovered a new spear phishing attack campaign from the SNAKEMACKEREL group that uses fake Brexit-related documents to infiltrate major government agencies and steal information.

December 7, 2018 | By Shane Schick

news

A restaurant worker using a laptop: macro downloaders

news

New Macro Downloaders Use PUB Files to Compromise Food and Retail Companies

New macro downloaders are sandwiching spam and .PUB files to compromise businesses in the food and retail sector.

December 7, 2018 | By Douglas Bonderud

news

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Macros

How to Fight Back Against Macro Malware

Retefe Banking Trojan Returns With Smoke Loader as Its Intermediate Loader

New TA505 Phishing Campaign Using LOLBins to Distribute Backdoor Malware

Aggah Campaign Using Bit.ly, BlogSpot and Pastebin to Distribute RevengeRAT

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

Threat Actor Targets Japanese Users With New Ursnif Variant

Geodo Botnets Using New Spam Campaign to Deliver Qakbot Malware

LCG Kit Document Builder Now Using Microsoft Word Macros to Install Malware Payloads

SNAKEMACKEREL Group Uses Brexit-Themed Spear Phishing Attack to Target Government Agencies

New Macro Downloaders Use PUB Files to Compromise Food and Retail Companies