EVGA

Novel phishing campaign uses corrupted Word documents to evade security

Author
Cool GTX
EVGA Forum Moderator
  • Total Posts : 31237
  • Reward points : 0
  • Joined: 2010/12/12 14:22:25
  • Location: Folding for the Greater Good
  • Status: offline
  • Ribbons : 123
2024/12/03 07:07:05 (permalink)
Novel phishing campaign uses corrupted Word documents to evade security
 
https://www.bleepingcomputer.com/news/security/novel-phishing-campaign-uses-corrupted-word-documents-to-evade-security/
 
(excerpts, follow link for all the details)
 
A novel phishing attack abuses Microsoft's Word file recovery feature by sending corrupted Word documents as email attachments, allowing them to bypass security software due to their damaged state but still be recoverable by the application.
Threat actors constantly look for new ways to bypass email security software and land their phishing emails in targets' inboxes.
A new phishing campaign discovered by malware hunting firm Any.Run utilizes intentionally corrupted Word documents as attachments in emails that pretend to be from payroll and human resources departments.
 
"Scanning the QR code will bring the user to a phishing site that pretends to be a Microsoft login, attempting to steal the user's credentials."
 

(end excerpts)
 
The bad actors just keep finding new ways to screw with your computer
 
Keep your anti-malware security softwar up to date

Learn your way around the EVGA Forums, Rules & limits on new accounts Ultimate Self-Starter Thread For New Members

I am a Volunteer Moderator - not an EVGA employee

Older RIG projects RTX Project  Nibbler


 When someone does not use reason to reach their conclusion in the first place; you can't use reason to convince them otherwise!
#1

0 Replies Related Threads

    Jump to:
  • Back to Mobile