Security News > 2019 > September > 'WhiteShadow' Downloader Employs Microsoft SQL for Malware Delivery

'WhiteShadow' Downloader Employs Microsoft SQL for Malware Delivery

2019-09-30 15:05

Microsoft Office macros that collectively act as a stage downloader are utilizing Microsoft SQL queries to fetch malicious payloads, Proofpoint’s security researchers report. read more

News URL

http://feedproxy.google.com/~r/Securityweek/~3/xcMJkz1lDvI/whiteshadow-downloader-employs-microsoft-sql-malware-delivery

#malware #microsoft #SQL

Related news

FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux (source)
Microsoft spots XCSSET macOS malware variant used for crypto theft (source)
Microsoft Uncovers New XCSSET macOS Malware Variant with Advanced Obfuscation Tactics (source)
Microsoft Teams tactics, malware connect Black Basta, Cactus ransomware (source)
Microsoft admits GitHub hosted malware that infected almost a million devices (source)
Microsoft: New RAT malware used for crypto theft, reconnaissance (source)
Microsoft Trust Signing service abused to code-sign malware (source)
Microsoft Trusted Signing service abused to code-sign malware (source)
New Android malware uses Microsoft’s .NET MAUI to evade detection (source)
Android Malware Exploits a Microsoft-Related Security Blind Spot to Avoid Detection (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		381	52	1423	2928	176	4579

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.