Tag: McAfee Labs – McAfee Blogs

HANCITOR DOC drops via CLIPBOARD

This article has been indexed from McAfee Labs – McAfee Blogs By Sriram P & Lakshya Mathur  Hancitor, a loader that provides Malware as a Service, has been observed distributing malware such as… The post HANCITOR DOC drops via CLIPBOARD appeared first…

‘Tis the Season for Scams

This article has been indexed from McAfee Labs – McAfee Blogs Co-authored by: P, Sriram, and Deepak Setty ‘Tis the season for scams. Well, honestly, it’s always scam season somewhere. In… The post ‘Tis the Season for Scams appeared first…

Malicious PowerPoint Documents on the Rise

This article has been indexed from McAfee Labs – McAfee Blogs Authored by Anuradha M McAfee Labs have observed a new phishing campaign that utilizes macro capabilities available in Microsoft PowerPoint…. The post Malicious PowerPoint Documents on the Rise appeared…

Malicious PowerPoint Documents on the Rise

This article has been indexed from McAfee Labs – McAfee Blogs Authored by Anuradha M McAfee Labs have observed a new phishing campaign that utilizes macro capabilities available in Microsoft PowerPoint…. The post Malicious PowerPoint Documents on the Rise appeared…

Steps to Discover Hidden Threat from Phishing Email

Introduction Email is one of the primary ways of communication in the modern world. We use email to receive notifications about our online shopping, financial transaction, credit card e-statements, one-time passwords to authenticate registration processes, application for jobs, auditions, school…

McAfee Defenders Blog: Reality Check for your Defenses

Read the original article: McAfee Defenders Blog: Reality Check for your Defenses Welcome to reality Ever since I started working in IT Security more than 10 years ago, I wondered, what helps defend against malware the best? This simple question…

McAfee Defender’s Blog: Operation Dianxun

Read the original article: McAfee Defender’s Blog: Operation Dianxun Operation Dianxun Overview In a recent report the McAfee Advanced Threat Research (ATR) Strategic Intelligence team disclosed an espionage campaign, targeting telecommunication companies, named Operation Diànxùn. The tactics, techniques and procedures…

Babuk Ransomware

Read the original article: Babuk Ransomware Executive Summary Babuk ransomware is a new ransomware threat discovered in 2021 that has impacted at least five big enterprises, with one already paying the criminals $85,000 after negotiations. As with other variants, this…

McAfee ATR Launches Education-Inspired Capture the Flag Contest!

Read the original article: McAfee ATR Launches Education-Inspired Capture the Flag Contest! McAfee’s Advanced Threat Research team just completed its second annual capture the flag (CTF) contest for internal employees. Based on tremendous internal feedback, we’ve decided to open it up to…

Two Pink Lines

Read the original article: Two Pink Lines Depending on your life experiences, the phrase (or country song by Eric Church) “two pink lines” may bring up a wide range of powerful emotions.    I suspect, like many fathers and expecting fathers,…

A Year in Review: Threat Landscape for 2020

Read the original article: A Year in Review: Threat Landscape for 2020 As we gratefully move forward into the year 2021, we have to recognise that 2020 was as tumultuous in the digital realm as it has in the physical…

2021 Threat Predictions Report

Read the original article: 2021 Threat Predictions Report The Year 2020 brought a historic pandemic and bad actors leveraging COVID-19-themed threats to test our security operations and our unprecedented shift to a remote work life. As we enter 2021, these concerns…

Additional Analysis into the SUNBURST Backdoor

Read the original article: Additional Analysis into the SUNBURST Backdoor Executive Summary There has been considerable focus on the recent disclosures associated with SolarWinds, and while existing analysis on the broader campaign has resulted in detection against specific IoCs associated…

SUNBURST Malware and SolarWinds Supply Chain Compromise

Read the original article: SUNBURST Malware and SolarWinds Supply Chain Compromise Part I of II Situation In a blog post released 13 Dec 2020, FireEye disclosed that threat actors compromised SolarWinds’s Orion IT monitoring and management software with a trojanized…