Home / Malware / Windows FlawedAmmyy RAT Malware Spreading via Excel -MSOFT Recommends Disabling Macros – ISBuzz News

Windows FlawedAmmyy RAT Malware Spreading via Excel -MSOFT Recommends Disabling Macros – ISBuzz News

Microsoft’s Security Intelligence team warns of a new malware campaign that infects and compromises fully patched Windows PCs, and which spreads via malicious macro functions in an Excel attachment to activate “a complex infection chain to download and run the notorious FlawedAmmyy remote access trojan directly in memory.” Microsoft recommends disabling macros. A Virsec expert offers thoughts.

Expert Comments:

Satya Gupta, CTO and Co-founder at Virsec:

Excel macros have been associated with malware for a long time, but it’s still alarming for Microsoft to recommend disabling all macros – functions used routinely by millions of businesses. Microsoft needs to rethink its macro strategy as it has become an easy vehicle for malware to get into fully patched systems. Below the surface we also need a new approach to in-memory attacks that are being launched through these macros. However these threats get in the front door (and there’s almost always a way in…) once in memory these attacks are undetectable by most security products and leave few traces behind after an application is done executing. 


Source link

Check Also

Clogged Up With Malware? Here’s The 5 Minute Reboot For Your Brain – Forbes

Reboot your brain needpix.com If you’re like me, you hardly ever switch off your laptop …

Leave a Reply

Your email address will not be published. Required fields are marked *