Security News > 2021 > November > Microsoft warns of surge in HTML smuggling phishing attacks

Microsoft warns of surge in HTML smuggling phishing attacks
2021-11-12 15:27

Microsoft has seen a surge in malware campaigns using HTML smuggling to distribute banking malware and remote access trojans.

While HTML smuggling is not a new technique, Microsoft is seeing it increasingly used by threat actors to evade detection, including the Nobelium hacking group behind the SolarWinds attacks.

HTML smuggling is a technique used in phishing campaigns that use HTML5 and JavaScript to hide malicious payloads in encoded strings in an HTML attachment or webpage.

A phishing HTML attachment could include a harmless link to a known website, thus not being seen as malicious.

The attacks usually start with a phishing email containing an HTML link in the body of the message or a malicious HTML file as an attachment.

If either is clicked, a ZIP file is dropped using HTML smuggling.


News URL

https://www.bleepingcomputer.com/news/security/microsoft-warns-of-surge-in-html-smuggling-phishing-attacks/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 365 50 1369 2819 161 4399