Cybersecurity Starts in the Boardroom
Once it had been discovered how straightforward it is to obscure a malicious package inside a OneNote .one attachment and mixed with “something new”, that users may not have seen before, it was obvious that the use of .one attachments for the delivery of malware was going to go up. …
Continue reading “OneNote – the threat actors new best friend…”
Following the recent increase in cyber attacks using Microsoft OneNote .one attachments as the carrier, OneNote is to get some enhanced security updates from Microsoft. Although it looks like we will have to wait for this extra protection from high risk phishing attacks until the end of April 2023. Microsoft …
I love OneNote – it is my go to, cross platform/cross device app (it even works on my watch!) so I have been watching the increasing threat actor activity using OneNote attachments with interest, as we all use OneNote her at Smart Thinking and Octagon and I have encouraged many …
Microsoft released it second Patch Tuesday of 2023 yesterday and it fixes a range of security and functionality issues across the range of Microsoft products, including fixing three zero-day flaws that are being actively exploited. Here is the Microsoft release notes page: February 2023 Security Updates – Release Notes – …
Here is a report from Bleeping Computers, looking at a data wiper malware attack that includes obvious clues pointing at well-known security researchers and Bleeping Computers claiming they are behind the operation (the author of the article was also included!). The destructive malware, Azov Ransomware is being distributed using pirated …
Continue reading “…and put the blame on cyber security researchers”
