Macros - Security Intelligence

Professional working on a laptop in the office targeted with Ursnif banking malware

news

Threat Actor Targets Japanese Users With New Ursnif Variant

Security researchers discovered an attack campaign targeting Japanese users with a new variant of Ursnif banking malware.

March 13, 2019 | By David Bisson

news

Woman checking email on mobile device as laptop starts up: qakbot malware

news

Geodo Botnets Using New Spam Campaign to Deliver Qakbot Malware

Researchers discovered Geodo botnets using a new spam campaign to deliver samples of Qakbot malware.

February 6, 2019 | By David Bisson

news

Woman working on laptop in a coffee shop: lcg kit

news

LCG Kit Document Builder Now Using Microsoft Word Macros to Install Malware Payloads

A weaponized document builder service known as LCG Kit added the ability to use Microsoft Word macros to load the necessary shellcode for installing malware.

December 20, 2018 | By David Bisson

news

Houses of Parliament and Big Ben: spear phishing attack

news

SNAKEMACKEREL Group Uses Brexit-Themed Spear Phishing Attack to Target Government Agencies

Analysts discovered a new spear phishing attack campaign from the SNAKEMACKEREL group that uses fake Brexit-related documents to infiltrate major government agencies and steal information.

December 7, 2018 | By Shane Schick

news

A restaurant worker using a laptop: macro downloaders

news

New Macro Downloaders Use PUB Files to Compromise Food and Retail Companies

New macro downloaders are sandwiching spam and .PUB files to compromise businesses in the food and retail sector.

December 7, 2018 | By Douglas Bonderud

news

A businessman using a laptop: remote access Trojan

news

TA505 Threat Group Distributes Previously Undocumented tRat Remote Access Trojan

Researchers observed the TA505 threat group spreading a previously undocumented remote access Trojan (RAT) called tRaT.

November 20, 2018 | By David Bisson

news

Illustration of images on a computer screen representing steganography.

news

NARWHAL SPIDER Uses Steganography to Deliver URLZone Malware in Cutwail Spam Campaign

A new Cutwail spam campaign is leveraging steganography — hiding data within images — to compromise devices and download URLZone.

November 7, 2018 | By Douglas Bonderud

news

A woman reading a document on a laptop: security vulnerabilities

news

Researchers Find 18 Security Vulnerabilities in Foxit PDF Reader

A free browser plugin for creating, editing and viewing PDF files contains 18 security vulnerabilities that could expose users to remote code execution.

October 8, 2018 | By Shane Schick

news

Illustration of a hand unlocking bitcoin access: cryptocurrency exchange

news

AppleJeus Trojan Targets Both Windows and MacOS in Attack Against Cryptocurrency Exchange

A recent attack against a cryptocurrency exchange planted a Trojan that spread across both Windows and MacOS machines to steal information and digital coins, according to security researchers.

August 30, 2018 | By Shane Schick

news

Illustration of a hand holding a magnifying glass in front of a computer screen: remote access Trojan

news

Modular Remote Access Trojan Uses Sophisticated Techniques to Evade Detection

According to security researchers, a new modular remote access Trojan (RAT) is using several sophisticated techniques to fly under the radar of traditional detection solutions.

August 10, 2018 | By David Bisson

news

GlitchPOS Creator Offers Instructional Video to Make Deploying POS Malware Easier

New Mirai Variant Targets Business Presentation and Display Devices

Brute-Force Attack Wave Uses Legacy Protocols, Credential Dumps to Compromise Cloud Accounts

Threat Actors Use Fake Copyright Infringement Notifications in Instagram Hacking Campaign

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Security Considerations for Whatever Cloud Service Model You Adopt

At RSAC 2019, It’s Clear the World Needs More Public Interest Technologists

To Improve Critical Infrastructure Security, Bring IT and OT Together

5 Characteristics of an Effective Incident Response Team: Lessons From the Front Line

The Business of Organized Cybercrime: Rising Intergang Collaboration in 2018

Spectre, Meltdown and More: What You Need to Know About Hardware Vulnerabilities

Stranger Danger: X-Force Red Finds 19 Vulnerabilities in Visitor Management Systems

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

X-Force Red in Action: Spotlight on Password Security With Dustin ‘Evil Mog’ Heywood

Podcast: Demystifying the Role of AI in Cybersecurity

Webinar: A Treatment Plan for UEM in Healthcare

Webinar: Cloud IAM: Your Key to Digital Transformation

Webinar: Under the Radar: March Live Webinar and Demo

Cyberattacks and the Airline Industry: The Strategic Threat Landscape

Tag: Macros

Threat Actor Targets Japanese Users With New Ursnif Variant

Geodo Botnets Using New Spam Campaign to Deliver Qakbot Malware

LCG Kit Document Builder Now Using Microsoft Word Macros to Install Malware Payloads

SNAKEMACKEREL Group Uses Brexit-Themed Spear Phishing Attack to Target Government Agencies

New Macro Downloaders Use PUB Files to Compromise Food and Retail Companies

TA505 Threat Group Distributes Previously Undocumented tRat Remote Access Trojan

NARWHAL SPIDER Uses Steganography to Deliver URLZone Malware in Cutwail Spam Campaign

Researchers Find 18 Security Vulnerabilities in Foxit PDF Reader

AppleJeus Trojan Targets Both Windows and MacOS in Attack Against Cryptocurrency Exchange

Modular Remote Access Trojan Uses Sophisticated Techniques to Evade Detection