169 views 10 secs 0 comments

Is that blood drive message really from the American Red Cross? Be careful.

In New Threats
September 26, 2023

NSFOCUS Security Labs recently discovered a new attack process based on phishing documents in their daily threat-hunting operations. Delving deeper into this finding through extensive research, they confirmed two new Trojan horse programs and many rare attack techniques and tactics.

… AtlasCross designed a decoy document titled “Blood Drive September 2023.docm” with the United States Red Cross blood donation information as its topic. After the bait document is opened, a prompt message, as shown below, will be displayed by default, requiring the victim to enable the word editing function….

Macros Disabled Security Warning

Read more about the attack method and details at NSFocus.

There was a time when phishing attacks were somewhat easier to spot because of their poor English and other mistakes. Nowadays, phishing attacks are more sophisticated, and with AI helping criminals write in proper English, they are getting harder and harder to detect.