Security Alerts & News
by Tymoteusz A. Góral

History
#809 Microsoft warns of sneaky new macro trick
Microsoft is warning of an innovative new technique attackers are using to sneak macro malware past virus detection engines and add to the already huge uptick in reported macro attacks.

According to researchers at Microsoft’s Malware Protection Center, they stumbled upon the macro technique in a file containing VBA project scripts with a sample of well-known malicious macro malware called TrojanDownloader:O97M/Donoff. It wasn’t the malware that piqued Microsoft’s interest, it was the attacker’s never-before-seen obfuscation technique.

It wasn’t immediately obvious that the macro file was actually malicious, wrote Marianne Mallen and Wei Li, both antivirus researchers at the Microsoft Malware Protection Center, who co-authored a blog post earlier this week on their discovery. “It [was] a Word file that contains seven VBA modules and a VBA user form with a few buttons (using the CommandButton elements),” wrote both authors.
Read more
#809 Microsoft warns of sneaky new macro trick
#808 Instagram patches brute-force authentication flaws
#807 Microsoft: Terrorists no longer welcome on OneDrive or Hotmail
#806 DARPA extreme DDoS project transforming network attack mitigation
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12