The Equation Editor vulnerability in Microsoft Office was fixed back in 2017 but SANS recently found a new phishing email using it in the wild. It really highlights why updates and patches are so important – especially when you are using older software. Have a look at the ingenuity used …
Microsoft to block downloaded Office macros – at last
Soon Microsoft Office will, by default, block macros from running that originate from the internet. At last! Helping users stay safe: Blocking internet macros by default in Office – Microsoft Tech Community This has been something that Microsoft has dragged it’s feet over for years. It was an open door …
Continue reading “Microsoft to block downloaded Office macros – at last”
Training is everything when it comes to phishing emails
Here is another example of a phishing attack, from SANS Internet Diary – although I am not sure the average user will know what to do with an ISO file? The attack is interesting as it uses Base 64 to obscure it from detection. Malicious ISO Embedded in an HTML …
Continue reading “Training is everything when it comes to phishing emails”
What PII was compromised in 2021?
This is an interesting article looking at cyber attacks in 2021. Personal identifying information for 1.5 billion users was stolen in 2021, but from where? – TechRepublic
Be aware of COVID-19 testing scams – get trained to deal with these threats
This a complex, but easily implemented by the hackers, hoax, being run by cyber criminals right now. It is based around COVID-19 home testing kits and the subsequent results. Cybercriminals are exploiting COVID-19 tests in phishing attacks – TechRepublic Phishing Emails The vector for the attack is primarily through email …
Continue reading “Be aware of COVID-19 testing scams – get trained to deal with these threats”