[NCSC-FI News] Harmful Help: Analyzing a Malicious Compiled HTML Help File Delivering Agent Tesla

This blog describes an attack that Unit 42 observed utilizing malicious compiled HTML help files for the initial delivery. We will show how to analyze the malicious compiled HTML help file. We will then follow the chain of attack through JavaScript and multiple stages of PowerShell and show how to analyze them up to the final payload.

Source: Read More (NCSC-FI daily news followup)

You might be interested in …

[ThreatPost] FBI Email Hoaxer ID’ed by the Guy He Allegedly Loves to Torment

All posts, ThreatPost

Vinny Troia, the cybersecurity researcher mentioned in a fake alert gushed out of the FBI’s email system, says it’s just one of a string of jabs from a childish but cybercriminally talented tormentor. Source: Read More (Threatpost)

Read More

[ZDNet] ‘Dirty Pipe’ Linux vulnerability discovered

All posts, ZDNet

Max Kellermann explained that the vulnerability affects Linux Kernel 5.8 and later versions. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ZDNet] DHS: Americans should be prepared for potential Russian cyberattacks

All posts, ZDNet

Officials noted that “Russia’s threshold for conducting disruptive or destructive cyber attacks in the homeland probably remains very high.” Source: Read More (Latest topics for ZDNet in Security)

Read More