Novel phishing campaign uses corrupted Word documents to evade security

Join us now!

Username
Password
Verification
	Stay logged in

Forgot Your Password? Forgot your Username? Haven't received registration validation E-mail?

Welcome, ! User Control Panel Log out

Forums
Posts

Latest Posts

Active Posts

Recently Visited

Search Results

View More
Blog

Recent Blog Posts

View More
Photos

Recent Photos

My Favorites

View More Photo Galleries
PMs

Unread PMs

Inbox

Send New PM View More
Page Extras
Menu
- Forum Themes

Mark Thread UnreadFlat Reading Mode ❐

Novel phishing campaign uses corrupted Word documents to evade security

Author Post Essentials Only Full Version
Cool GTX EVGA Forum Moderator Total Posts : 31120 Reward points : 0 Joined: 2010/12/12 14:22:25 Location: Folding for the Greater Good Status: online Ribbons : 123 2024/12/03 07:07:05 (permalink) Novel phishing campaign uses corrupted Word documents to evade security https://www.bleepingcomputer.com/news/security/novel-phishing-campaign-uses-corrupted-word-documents-to-evade-security/ (excerpts, follow link for all the details) A novel phishing attack abuses Microsoft's Word file recovery feature by sending corrupted Word documents as email attachments, allowing them to bypass security software due to their damaged state but still be recoverable by the application. Threat actors constantly look for new ways to bypass email security software and land their phishing emails in targets' inboxes. A new phishing campaign discovered by malware hunting firm Any.Run utilizes intentionally corrupted Word documents as attachments in emails that pretend to be from payroll and human resources departments. "Scanning the QR code will bring the user to a phishing site that pretends to be a Microsoft login, attempting to steal the user's credentials." (end excerpts) The bad actors just keep finding new ways to screw with your computer Keep your anti-malware security softwar up to date Learn your way around the EVGA Forums, Rules & limits on new accounts Ultimate Self-Starter Thread For New Members I am a Volunteer Moderator - not an EVGA employee **Older RIG projects RTX Project Nibbler** When someone does not use reason to reach their conclusion in the first place; you can't use reason to convince them otherwise! #1 0 Replies Related Threads

Author

Post

Essentials Only Full Version

Cool GTX

EVGA Forum Moderator

Total Posts : 31120
Reward points : 0
Joined: 2010/12/12 14:22:25
Location: Folding for the Greater Good
Status: online
Ribbons : 123

2024/12/03 07:07:05 (permalink)

Novel phishing campaign uses corrupted Word documents to evade security

https://www.bleepingcomputer.com/news/security/novel-phishing-campaign-uses-corrupted-word-documents-to-evade-security/

(excerpts, follow link for all the details)

A novel phishing attack abuses Microsoft's Word file recovery feature by sending corrupted Word documents as email attachments, allowing them to bypass security software due to their damaged state but still be recoverable by the application.
Threat actors constantly look for new ways to bypass email security software and land their phishing emails in targets' inboxes.
A new phishing campaign discovered by malware hunting firm Any.Run utilizes intentionally corrupted Word documents as attachments in emails that pretend to be from payroll and human resources departments.

"Scanning the QR code will bring the user to a phishing site that pretends to be a Microsoft login, attempting to steal the user's credentials."

(end excerpts)

The bad actors just keep finding new ways to screw with your computer

Keep your anti-malware security softwar up to date

Learn your way around the EVGA Forums, Rules & limits on new accounts Ultimate Self-Starter Thread For New Members

I am a Volunteer Moderator - not an EVGA employee

Older RIG projects RTX Project Nibbler

When someone does not use reason to reach their conclusion in the first place; you can't use reason to convince them otherwise!

0 Replies Related Threads

Jump to: