HACKERS are said to be ‘weaponising’ Excel documents so they can take over corporate networks.
The cybercriminals are reportedly targeting employees at financial companies via a new phishing email campaign.
According to TechRadar, the campaign is being called “MirrorBlast”.
It was first detected in September this year by cybersecurity firm ET Labs.
Another company called Morphisec then investigated the issue and revealed all in a blog post.
It said that the bad Excel files can bypass malware detecting systems.
The blog explains: “Morphisec Labs tracked a new MirrorBlast campaign targeting financial services organizations.
“MirrorBlast is delivered via a phishing email that contains malicious links which download a weaponized Excel document.
“MirrorBlast has low detections on VirusTotal due to the extremely lightweight macro embedded in its Excel files, making it particularly dangerous for organizations that depend on detection-based security and sandboxing.”
Morphisec thinks a Russian-based criminal group called TA505 could be behind the malicious campaign.
To avoid falling victim to a phishing campaign like this you should never click on suspicious links in emails.
Avoid downloading suspicious files and alert your company if you think you have been targeted.
Best Phone and Gadget tips and hacks
Looking for tips and hacks for your phone? Want to find those secret features within social media apps? We have you covered…
In other news, check out the new Lamborghini Huracan Evo that can clean your house and cook you dinner.
Check out the wildly impressive Panasonic 65HZ1000 TV, which makes most tellies look rubbish.
Read our complete guide to Call of Duty 2021.
And Dell’s Alienware R10 Ryzen Edition is a gaming PC powerhouse that crushes both the new consoles.
Looking for a discount on Airpods? Check out our Black Friday Airpods deals page.
We pay for your stories! Do you have a story for The Sun Online Tech & Science team? Email us at firstname.lastname@example.org