Malicious Word documents & Associated Phishing campaign

by George Chetcuti [Published on 3 July 2014 / Last Updated on 3 July 2014]

In this two-part series three security researchers present an analysis of a particular attack that combines spearphishing and exploit attempt.

In this specific example the attackers targeted a feature within Microsoft Word — Visual Basic Scripting for Applications. While basic, the Office Macro attack vector is obviously still working quite effectively.  When the victim opens the Word document, an On-Open macro fires, which results in downloading an executable and launching it on the victim’s machine.

This threat actor has particularly lavish tastes.  This threat actor seem to target high-profile, money-rich industries such as banking, oil, television, and jewellery.

Read the full article here - http://blogs.cisco.com/security/a-string-of-paerls/

Add Review or Comment

See Also

Featured Links