Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Microsoft urgently warns about a phishing campaign that uses malicious Excel macros to hack PCs
Security team with Microsoft's Security Intelligence has issued an emergency warning about a "massive" fraud campaign that could affect the millions of Microsoft users they've been following for days. In this campaign, the hacker will try to install the remote access tool on the target PC by tricking the victim into opening an email attachment containing a malicious Excel 4.0 macro.
According to the results of Security Intelligence's investigation, this fraudulent campaign 'follows' the hot topic currently translated as COVID-19. It started being deployed on May 12 and has so far spread hundreds of malicious, well-designed attachments to the internet environment. These malicious files will often be included in fake fake emails, from reputable sources like WHO, Johns Hopkins Center and other international public health organizations.
If the recipient tries to open the attached malicious Excel files, he or she will see the content displayed as a security warning and a chart of COVID-19 infections around the world. But if allowed to run, the malicious Excel 4.0 macro will download itself and run a program called NetSupport Manager.
Malicious Excel file Basically, NetSupport Manager is a legitimate remote access tool, but in this case, it can be abused by an attacker to gain remote access to the target computer, then customize it. intentionally run malicious commands on compromised systems, Security Intelligence warns.
'In the past few months, we have noticed a steady increase in the use of malicious Excel 4.0 macros in many malware attack campaigns. The Excel 4.0 campaigns have shown signs of booming since the beginning of April and mostly follow the theme of COVID-19 '.
- Microsoft Security Intelligence
Notably, although hundreds of malicious files have been distributed and tampered with in various attacks, they all connected to the same URL to download malicious payloads to the system. infected.
Recently, TipsMake also had a number of articles warning readers about the situation of hackers actively taking advantage of the complicated evolution of the COVID-19 epidemic to deploy online fraud and spread malware. on a global scale. In late April, Google said it successfully blocked millions of malicious COVID-19-related emails on Gmail every day.
In general, the form of malicious phishing attachments in emails has been designed more sophisticatedly but it is not new in nature. Even so, it will still be dangerous for ordinary users who do not have a lot of security knowledge.
You can turn off macros in Excel if you do not use this feature to prevent risks.
Lesley MontoyaYou should read it
- Excel continues to be used as a lure for online fraud with complex mechanisms
- How to identify phishing emails
- Forecast 2021: The world of security will be devastated by ransomware '
- Outlook on Android is about to add phishing email feature
- Warning of phishing attacks based on fake Zoom meetings
- Hacking court computer systems to spread malicious emails, hackers jailed for 145 months
- Hackers found a way to bypass Microsoft Office 365 Safe Links
- Hackers add new tricks to 'extort money' for victims of Covid-19 season
May be interested
- How to protect PowerShell from fileless attacks from the Remcos RAT malware
excel users need to be on guard as a newly discovered phishing campaign is targeting microsoft's spreadsheet application. - Notorious hacker group Hafnium deployed malicious code to target Windows, Microsoft stood stillhafnium, the notorious hacker group that shocked the world with a campaign to destroy microsoft exchange servers more than a year ago, is making a comeback that makes microsoft once again stand still.
- More than 1,300 phishing kits are being sold on the hacker foruman anonymous hacker allegedly pocketed a total of more than $ 30,000 after successfully selling a huge collection of more than 1,300 sets of phishing kit on a popular hacker forum. .
- MS Excel 2003 - Lesson 8: Excel Macro - Automate complex tasksa macro is a program that includes commands and functions that are executed every time you need it. macros can automatically perform operations and reduce steps to complete regular tasks.
- Instructions for creating Macros in Excelmacros help you save time when performing repetitive steps in excel. you can refer to how to create and use macros in excel in the following article.
- New Phishing Attack Disables iPhone Security: How to Protect Yourself?a dangerous smishing campaign is targeting apple imessage users, using social engineering to disable the messaging service's built-in anti-phishing protection.
- How to enable macros on Excelthe following article will guide you how to enable macros in excel 2007, 2010, 2013 and 2016.
- What is a macro in Excel? How to create and run a Macro in Excelmacros are small programs that help you automate repetitive tasks that you use in excel. recording macros is recording the steps in vba code (visual basic for applications). the following article helps you do not need to know the language of vba programming but still help you create small macros and re-run macros whenever necessary.
- Excel cannot run macros and the solution is for youwhile working with excel, many of you often encounter the error that excel cannot run macros and don't know what to do.
- How to delete macros in Excel item by item, all quicklydeleting macros in excel is extremely necessary, helping your file become neater and easier to manage. if you have difficulty or don't know how to do it, you can refer to taimienphi's detailed instructions below.
Attack the network
- A series of supercomputers in Europe were suddenly attacked
- Detecting a Thunderbolt flaw allows a hacker to steal system data for 5 minutes
- Many websites were hacked, changing content into gambling advertisements
- Kaspersky accused the APT32 hacker group of using the Google Play Store to spread spyware for years
- Warning: Phishing attacks targeting Microsoft Teams show signs of sharp increase
- Shade Ransomware stopped working, apologized to the victims, and released 750,000 decryption keys
A series of supercomputers in Europe were suddenly attacked
Detecting a Thunderbolt flaw allows a hacker to steal system data for 5 minutes
Many websites were hacked, changing content into gambling advertisements
Kaspersky accused the APT32 hacker group of using the Google Play Store to spread spyware for years
Warning: Phishing attacks targeting Microsoft Teams show signs of sharp increase
Shade Ransomware stopped working, apologized to the victims, and released 750,000 decryption keys