Security News

Pirated Microsoft Office delivers malware cocktail on systems
2024-05-30 20:53

Cybercriminals are distributing a malware cocktail through cracked versions of Microsoft Office promoted on torrent sites. The malware delivered to users includes remote access trojans, cryptocurrency miners, malware downloaders, proxy tools, and anti-AV programs.

Popular Android Apps Like Xiaomi, WPS Office Vulnerable to File Overwrite Flaw
2024-05-02 14:22

Several popular Android applications available in Google Play Store are susceptible to a path traversal-affiliated vulnerability that could be exploited by a malicious app to overwrite arbitrary...

US Post Office phishing sites get as much traffic as the real one
2024-04-28 15:29

Security researchers analyzing phishing campaigns that target United States Postal Service saw that the traffic to the fake domains is typically similar to what the legitimate site records and it is even higher during holidays. "The amount of traffic to the illegitimate domains was almost equal to the amount of traffic to legitimate domains on a normal day - and greatly exceeded legitimate traffic during the holidays." - Akamai.

Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw
2024-04-27 12:47

Cybersecurity researchers have discovered a targeted operation against Ukraine that has been found leveraging a nearly seven-year-old flaw in Microsoft Office to deliver Cobalt Strike on...

Microsoft Office LTSC 2024 preview available for Windows, Mac
2024-04-18 16:49

A preview of Microsoft Office LTSC 2024, a volume-licensed and perpetual version of Office for commercial customers, is now available for Windows and macOS users. Office LTSC 2024 for commercial preview, Visio 2024 preview, and Project 2024 preview.

New Phishing Attack Uses Clever Microsoft Office Trick to Deploy NetSupport RAT
2024-03-19 05:28

A new phishing campaign is targeting U.S. organizations with the intent to deploy a remote access trojan called NetSupport RAT. Israeli cybersecurity company Perception Point is tracking the...

Protecting distributed branch office environments from ransomware
2024-03-18 03:00

The serious scale of the threat posed by ransomware attacks in the UK, Europe and globally was bought into sharp focus by the UK House of Commons/House of Lords Joint Committee on the National Security Strategy in its December 2023 report, A hostage to fortune: ransomware and UK national security. Huawei aims to do just that, having unveiled its new HiSec SASE Solution - designed to deliver cloud-network-edge-endpoint integrated intelligent protection and provide consistent security assurance for both enterprise headquarters and branch offices - at last month's Mobile World Congress in Spain.

Microsoft announces Office LTSC 2024 preview starting next month
2024-03-15 16:57

Microsoft announced that Office LTSC 2024, the next Office LTSC release, will enter a commercial preview phase starting next month and will be generally available later this year. The company will also release Office 2024 later this year, a new version of on-premises Office for consumers, which comes with five years of support and the traditional "One-time purchase" model.

Australian Tax Office probed 150 staff over social media refund scam
2024-02-14 04:45

The extent of the scam was revealed on Monday in an audit of the ATO's management and oversight of fraud control arrangements for the Goods and Services Tax - Australia's equivalent of a value-added or sales tax. The scam promoted in online ads detailed a means of securing a loan from the ATO - an outright lie, as Australian tax authorities are not notably more generous than others around the world.

Blackwood hackers hijack WPS Office update to install malware
2024-01-25 20:30

A previously unknown advanced threat actor tracked as 'Blackwood' is using sophisticated malware called NSPX30 in cyberespionage attacks against companies and individuals. Researchers at cybersecurity company ESET discovered Blackwood and the NSPX30 implant in a campaign in 2020 and believe that the group's activities align with Chinese state interests.