Security News > 2025 > April > Fake Microsoft Office add-in tools push malware via SourceForge

Fake Microsoft Office add-in tools push malware via SourceForge

2025-04-08 20:53

Threat actors are abusing SourceForge to distribute fake Microsoft add-ins that install malware on victims' computers to both mine and steal cryptocurrency. [...]

News URL

https://www.bleepingcomputer.com/news/security/fake-microsoft-office-add-in-tools-push-malware-via-sourceforge/

#malware #microsoft #microsoftoffice #office #tools

Related news

Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware (source)
Microsoft releases emergency update to fix Office 2016 crashes (source)
Microsoft blocks ActiveX by default in Microsoft 365, Office 2024 (source)
Microsoft: Office 2016 and Office 2019 reach end of support in October (source)
StealC malware enhanced with stealth upgrades and data theft tools (source)
Fake AI Tools Used to Spread Noodlophile Malware, Targeting 62,000+ via Facebook Lures (source)
Microsoft will update Office apps on Windows 10 until 2028 (source)
South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		392	52	1469	2977	183	4681

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.