Forum » Informacijska varnost » Hekerji so za krajo gesel uporabili wordov dokument brez makrov
Hekerji so za krajo gesel uporabili wordov dokument brez makrov
Blisk ::
Iatromantis ::
To je boljši vir: https://www.bleepingcomputer.com/news/s...
? A victim receives a spam email with a DOCX file attachment.
? Victim downloads and opens the DOCX file.
? DOCX file contains an embedded OLE object.
? OLE object downloads and opens an RTF (disguised as a DOC) file.
? DOC file uses CVE-2017-11882 Office Equation Editor vulnerability.
? Exploit code runs an MSHTA command line.
? MSHTA command line downloads and runs an HTA file.
? HTA file contains a VBScript that unpacks a PowerShell script.
? PowerShell script downloads and installs the password stealer.
? Malware steals passwords from browsers, email and FTP clients.
? Malware uploads data to a remote server.
Microsoft's January 2018 Patch Tuesday security updates included a patch that removed part of the Equation Editor's functionality in order to mitigate CVE-2017-11882.
Vredno ogleda ...
Tema | Ogledi | Zadnje sporočilo | |
---|---|---|---|
Tema | Ogledi | Zadnje sporočilo | |
» | Windows 10 bo dobil bash! (strani: 1 2 3 )Oddelek: Novice / Operacijski sistemi | 45281 (37548) | Jst |
» | PowerShellOddelek: Programiranje | 2466 (1427) | m1h4 |
» | Kako restartat proces?Oddelek: Programiranje | 3434 (2986) | k4vz0024 |
» | Software za pisanje knjigOddelek: Programska oprema | 2232 (1894) | utement |
» | Shareaza je muli "uničila" ED2k linke :((Oddelek: Omrežja in internet | 1568 (1386) | V-i-p |