Microsoft OneNote Documents Used To Deliver Malware
Malicious actors are distributing spear-phishing emails with malicious Microsoft OneNote documents to infect users with backdoors, remote access trojans, and information stealers.
The malicious software used in the campaigns include Qbot, AsyncRAT, Agent Tesla, DOUBLEBACK, Netwire, QuasarRAT, RedLine Stealer, and XWorm.
Multiple Windows binaries are used to carry out the operation including PowerShell, cmd.exe, and curl.exe.
Featured Resources
blog
10 Types of Network Attacks: Common Threats and How to Prevent Them
Network attacks have evolved far beyond simple brute-force intrusions or spam. Threat actors now employ complex, multi-vector tactics that can
Two Pager
Proactive, AI-Powered SIEM Rule Validation and Detection Engineering
Save time and resources by automating the most critical tasks in modern SecOps
blog
Top 10 Vulnerability Management Metrics for Effective Reporting
To stay ahead of attackers and demonstrate progress to stakeholders, organizations must measure how effectively they manage and reduce cyber