web analytics

APT Hackers Turn to Malicious Excel Add-ins as Initial Intrusion Vector

Rate this post

Microsoft’s decision to block Visual Basic for Applications (VBA) macros by default for Office files downloaded from the internet has led many threat actors to improvise their attack chains in recent months.
Now according to Cisco Talos, advanced persistent threat (APT) actors and commodity malware families alike are increasingly using Excel add-in (.XLL) files as an initial intrusion vector.Leer másThe Hacker News

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post

Chris Davis
Blue Team Cheat Sheets by Chris Davis
Blue Team Cheat Sheets by...
MITRE
11 STRATEGIES OF A WORLD-CLASS CYBERSECURITY OPERATIONS CENTERS HIGHLIGHTS BY MITRE
11 STRATEGIES OF A WORLD-CLASS...
Harvard Business Review
Boards Are Having the Wrong Conversations About Cybersecurity – Board interactions with the CISO are lacking – by Lucia Millica and Keri Pearlson – Harvard Business Review
Boards Are Having the Wrong...
Practical DevSecOps
API Security Fundamentals – Your Handy Guide to Building an Unhackable System by practical-devsecops.com
API Security Fundamentals – Your...
Microsoft
Microsoft Zero Trust Maturity Model
Microsoft Zero Trust Maturity Model
UFMCS ARMY
THE ARMY RED TEAM HANDBOOK – The Guide to Making Better Decisions version 9 by – University of Foreign Military and Cultural Studies (UFMCS).
THE ARMY RED TEAM HANDBOOK...
Marcos Jaimovich
Why do we compare a SOC (Security Operations Center) with the cockpit of a commercial airplane? by Marcos Jaimovich
Why do we compare a...
Joas Antonio
Security Operations Center (SOC) – Tools for Operations Development by Joas Antonio
Security Operations Center (SOC) –...
IZZMIER
Incident Response Playbooks & Workflows Ready for use in your SOC & Redteams
Incident Response Playbooks & Workflows...
LOGPOINT
396 Use Cases & Siem Rules Code ready for use for Mitre Attacks Events Detection in Your SOC by Logpoint
396 Use Cases & Siem...
Forrester - Allie Mellen
Adapt Or Die: XDR Is On A Collision Course With SIEM And SOAR – EDR Is Dead, Long Live XDR by Allie Mellen – Forrester
Adapt Or Die: XDR Is...
CYBER LEADERSHIP INTITUTE
CISO PLAYBOOK: FIRST 100 DAYS Setting the CISO up for success
CISO PLAYBOOK: FIRST 100 DAYS...

LASTEST PUBLISHED POSTS

WWW. D E V S E COP S G U I D E S . CO M
Attacking Docker
Attacking Docker
W W W . D E V S E C O P S G U I D E S . C O M
Attacking AWS – Offensive Security Aproach
Attacking AWS – Offensive Security...
ENISA
Artificial Intelligence and Cybersecurity Research 2023
Artificial Intelligence and Cybersecurity Research...
MuleSoft
API Security Best Practices – Protect your APIs with Anypoint Platform
API Security Best Practices –...
Green Circle
All about Security Operations Center
All about Security Operations Center
DAZZ
A Guide to Building a Secure SDLC – Which Scanning Tools Should I look at, and where do they go?
A Guide to Building a...
zimperium
2023 Mobile Banking Heists Report
2023 Mobile Banking Heists Report
40 under 40
40 under 40 in CyberSecurity 2024
40 under 40 in CyberSecurity...
HADESS
40 Days in DeepDark Web About Crypto Scam
40 Days in DeepDark Web...
Everbridge
8 Principles of Supply Chain Risk Management
8 Principles of Supply Chain...
CHAOSSEARCH
Threat Hunter’s Handbook – Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment
Threat Hunter’s Handbook – Using...
ENDGAME
The Hunters Handbook Endgame’s Guide to Adversary Hunting
The Hunters Handbook Endgame’s Guide...

More Latest Published Posts

IGNITE Technologies
Windows Persistence COM Hijacking MITRE T1546 015
Windows Persistence COM Hijacking MITRE T1546 015
IGNITE Technologies
Windows Exploitation Rundll32
Windows Exploitation Rundll32
IGNITE Technologies
Windows Exploitation Msbuild
Windows Exploitation Msbuild
HADESS
Web LLM Attacks
Web LLM Attacks
HADESS
Trended Protocols for Security Stuff
Trended Protocols for Security Stuff
Red Iberoamericana de Protección de Datos
Transferencia Internacional de Datos Personales – Guia de Implementación
Transferencia Internacional de Datos Personales – Guia de Implementación
CYFIRMA
TRACKING RANSOMWARE January 2024
TRACKING RANSOMWARE January 2024
https://www.linkedin.com/in/harunseker/
TOP Cyber Attacks Detected by SIEM Solutions
TOP Cyber Attacks Detected by SIEM Solutions
TRAVARSA
Top 100 Cyber Threats and Solutions 2024
Top 100 Cyber Threats and Solutions 2024
Top 50 Cybersecurity Threats
Top 50 Cybersecurity Threats
OWASP
Top 10 Considerations for Incident Response
Top 10 Considerations for Incident Response
EXECWEB
Tips for Cybersecurity Vendors to Connect with CISOs
Tips for Cybersecurity Vendors to Connect with CISOs
WITH SECURE
Threat Landscape Report 2024
Threat Landscape Report 2024
ThreatRadar
Threat Intel Roundup Phar SEO Poisoning ScreenConnect
Threat Intel Roundup Phar SEO Poisoning ScreenConnect
ThreatRadar
Threat Intel Roundup Outlook, QNAP, Okta
Threat Intel Roundup Outlook, QNAP, Okta
ThreatRadar
Threat Intel Roundup Outlook SmartScreen Lockbit
Threat Intel Roundup Outlook SmartScreen Lockbit
ThreatRadar
Threat Intel Roundup FortiOS Super Bowl Chrome APT15
Threat Intel Roundup FortiOS Super Bowl Chrome APT15
INFOSECTRAIN
Third Party Information Security Assessment Checklist
Third Party Information Security Assessment Checklist
INFOSECTRAIN
THE ULTIMATE SOC – CAREER GUIDE FOR BEGINNERS
THE ULTIMATE SOC – CAREER GUIDE FOR BEGINNERS
Waterfall Security Solutions LTD.
THE TOP 20 CYBERATTACKS on Industrial Control Systems
THE TOP 20 CYBERATTACKS on Industrial Control Systems
CSA Cloud Security Alliance
The State of SecurityRemediation 2024
The State of SecurityRemediation 2024
THE LINUX FUNDATION
The Open Source Software Security Mobilization Plan by OpenSSF
The Open Source Software Security Mobilization Plan by OpenSSF
HITRUST
The HITRUST Approach to NIST CSF 2.0
The HITRUST Approach to NIST CSF 2.0
Gavin Phillips
The Deep and Dark Web Guide
The Deep and Dark Web Guide
The Computer and Information Security
The Computer and Information Security
Deloitte
The CISOs guide to Generative AI
The CISOs guide to Generative AI
Ahmed Medhat
Suspicious Traffic Detection and Analysis
Suspicious Traffic Detection and Analysis
KPMG
Supply Chain Risk Management – A data driven approach to protecting your organization
Supply Chain Risk Management – A data driven approach to protecting your organization