Microsoft Office - Security Intelligence

Security professional reading about the latest malware threats: malware

news

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

Digital attackers used more than a dozen web servers to host 10 malware families and distributed those threats using phishing emails.

April 9, 2019 | By David Bisson

news

Professional working on a laptop in the office targeted with Ursnif banking malware

news

Threat Actor Targets Japanese Users With New Ursnif Variant

Security researchers discovered an attack campaign targeting Japanese users with a new variant of Ursnif banking malware.

March 13, 2019 | By David Bisson

news

Woman checking email on mobile device as laptop starts up: qakbot malware

news

Geodo Botnets Using New Spam Campaign to Deliver Qakbot Malware

Researchers discovered Geodo botnets using a new spam campaign to deliver samples of Qakbot malware.

February 6, 2019 | By David Bisson

news

Woman working on laptop in a coffee shop: lcg kit

news

LCG Kit Document Builder Now Using Microsoft Word Macros to Install Malware Payloads

A weaponized document builder service known as LCG Kit added the ability to use Microsoft Word macros to load the necessary shellcode for installing malware.

December 20, 2018 | By David Bisson

news

Illustration of menacing birds flying over a computer monitor: Hawkeye keylogger

news

Threat Actors Exploit Equation Editor to Distribute Hawkeye Keylogger

A recent Hawkeye keylogger campaign leveraged an old Microsoft Office Equation Editor vulnerability to steal user credentials, passwords and clipboard content.

November 15, 2018 | By Douglas Bonderud

news

A password field on a laptop screen: Agent Tesla

news

New Campaign Uses RTF Files to Drop Agent Tesla Trojan and Other Malware

A new attack campaign is using Rich Text Format (RTF) files to distribute the Agent Tesla Trojan along with other malware.

October 26, 2018 | By David Bisson

news

Camera emerging from the bushes: Gallmaker

news

New Gallmaker Attack Group Using Living-off-the-Land Tactics in Espionage Campaign

A new attack group known as Gallmaker spied on military and government organizations by employing living-off-the-land tactics.

October 19, 2018 | By David Bisson

news

A magician's hat and a hand holding a wand: TrickBot malware

news

Latest Version of TrickBot Malware Uses Macro-Enabled Word Documents to Deliver New Stealth Code Injection

The latest version of TrickBot malware leverages malicious macros to deliver stealthy code injection, fool users and compromise computers.

August 31, 2018 | By Douglas Bonderud

news

A woman checking her email on a desktop computer.

article

Analyzing PDF and Office Documents Delivered Via Malspam

Endpoint detection and antiphishing tools can help users filter basic spam email, but detecting malspam in PDF and Microsoft Office documents requires a more thorough investigation.

May 1, 2018 | By Koen Van Impe

article

A collection of mobile devices running Microsoft.

news

Older Office Cybersecurity Vulnerability Exploited by Cobalt Attackers

Fraudsters have used the MS Office Equation Editor cybersecurity vulnerability to craft an attack on financial institutions and users.

November 30, 2017 | By Larry Loeb

news

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: MacOS Management Made Easy with MaaS360

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Tag: Microsoft Office

Web Servers Used to Host 10 Malware Families Distributed via Phishing Emails

Threat Actor Targets Japanese Users With New Ursnif Variant

Geodo Botnets Using New Spam Campaign to Deliver Qakbot Malware

LCG Kit Document Builder Now Using Microsoft Word Macros to Install Malware Payloads

Threat Actors Exploit Equation Editor to Distribute Hawkeye Keylogger

New Campaign Uses RTF Files to Drop Agent Tesla Trojan and Other Malware

New Gallmaker Attack Group Using Living-off-the-Land Tactics in Espionage Campaign

Latest Version of TrickBot Malware Uses Macro-Enabled Word Documents to Deliver New Stealth Code Injection

Analyzing PDF and Office Documents Delivered Via Malspam

Older Office Cybersecurity Vulnerability Exploited by Cobalt Attackers