However, after both 7-ZIP and Windows fixed these bugs, threat actors began finding another file format to use in attacks, which led to Microsoft OneNote attachments from mid-December 2022.
But, after Microsoft disabled macros by default in Word and Excel Office documents in July 2022, threat actors began turning to ISO files and password-protected ZIP archives, as the Windows and 7-Zip bugs allow these file formats to bypass Mark-of-the-Web (MoTW) security warnings. Initially, threat actors have been abusing macros in Microsoft Word and Excel documents to spread malware on Windows devices. As per the sources, a harmless Microsoft OneNote file has become a popular file format for malware-distributing phishing attacks for hackers to spread malware and breach corporate networks.
0 kommentar(er)
