Application Security September 22, 2022

Does Follina Mean It’s Time to Abandon Microsoft Office?

4 min read - As a freelance writer, I spend most of my day working in Microsoft Word. Then, I send drafts to clients and companies across the globe. So, news of the newly discovered Microsoft Office vulnerability made me concerned about the possibility…

June 3, 2020

Excel 4.0 Macro Functionality Incorporated Into Ursnif Delivery Campaigns

2 min read - Security researchers discovered a new Ursnif malware delivery campaign leveraging Excel 4.0 macro functionality.

June 1, 2020

Trickbot Replaces ‘Mworm’ Propagation Method With New ‘Nworm’ Module

2 min read - Security researchers discovered that the Trickbot Trojan has replaced its "mworm" propagation method with a new "nworm" module.

May 5, 2020

EventBot Mobile Banking Trojan Could Infect Over 200 Financial Services Apps

2 min read - More than 200 personal finance apps are at risk of a mobile banking Trojan dubbed EventBot, which is designed to steal user data, security researchers warn.

March 18, 2020

Ursnif Campaign Leverages New Infection Chain to Target Italian Users

2 min read - Security researchers detected an Ursnif campaign that leveraged a new infection chain to target users based in Italy.

Endpoint August 19, 2019

How Video Became a Dangerous Delivery Vehicle for Malware Attacks

4 min read - The lure of video might be the perfect social engineering trick for malware attacks. Here's how your enterprise security team can fight back.

April 23, 2019

Aggah Campaign Using Bit.ly, BlogSpot and Pastebin to Distribute RevengeRAT

2 min read - Researchers spotted the operators of the Aggah campaign exploiting Bit.ly, BlogSpot and Pastebin to spread variants of the RevengeRAT malware in the Middle East, Asia, Europe and the U.S.

August 31, 2018

Latest Version of TrickBot Malware Uses Macro-Enabled Word Documents to Deliver New Stealth Code Injection

2 min read - The latest version of TrickBot malware leverages malicious macros to deliver stealthy code injection, fool users and compromise computers.

July 26, 2018

New Encrypted Downloader Leverages Old-School Macro Malware to Gain Backdoor Access

2 min read - According to a recent threat advisory, cybercriminals have combined a new encrypted downloader with old-school macro malware to gain backdoor access to victims' machines.

October 24, 2017

Locky Ransomware Attacks Exploit Microsoft DDE to Increase Effectiveness

2 min read - The cybercriminals behind Locky ransomware have adopted a new DDE hijacking technique to infect as many victims as possible while evading detection.