The Microsoft Digital Crimes Unit has gone to court to seize 41 domains alleged to have been used by an Iranian cybercrime group called Bohrium. The Bohrium group ran a targeted email spear-phishing operation against organizations in the US, Middle East, and India. As part of the operation they would pose …
Ransomware attacks – just in case you have forgotten that any organisation can be compromised – three tips to help you face up to the threat
Bored with ransomware stories? Read this one, it has a very nice Hitchhiker’s Guide to the Galaxy reference. There have been a flurry of ransomware attacks in the news recently – but these are only the ones that make the headlines. Louisiana authorities investigating ransomware attack on city of Alexandria …
Phishing email alert – Excel spreadsheets loaded with RATs
Fortinet’s FortiGuard Labs threat intelligence have been tracking phishing emails that contain a triple threat of remote access trojans – RATS. The package is contained in an infected Microsoft Excel document and once the recipient of the email makes the mistake of opening the file – because the file name …
Continue reading “Phishing email alert – Excel spreadsheets loaded with RATs”
Anatomy of a phishing email
Awareness of the variations of phishing email attacks is a big step in defending against them – that I why I always try and post about any in depth analysis of phishing emails and their payloads that SANS Internet Storm Centre runs. HTML phishing attachments – now with anti-analysis features …
Microsoft guidance for Office zero-day vulnerability – Follina
I have written about this Microsoft Word vulnerability earlier this week: New attack using Microsoft Office documents – could you or your team recognise it? – Smart Thinking Solutions There is still not patch – but Microsoft has issued some mitigation guidance: Guidance for CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability …
Continue reading “Microsoft guidance for Office zero-day vulnerability – Follina”
