Pony credential stealer trampling users via Microsoft Publisher documents

Multiple levels of obfuscation shelters the malware from prying eyes.


David Bisson  February 8, 2017


The credential-stealing Pony malware is masquerading as Microsoft Publisher documents in an effort to infect unsuspecting users.


The campaign begins when an attack email containing a Microsoft Publisher document saunters over to an unsuspecting user.


                       MS Publisher malware email


To be clear, this isn’t the first time attackers have married malware-laden spam and Publisher files together. But it’s an uncommon attack vector in comparison to malicious Microsoft Word, Excel and even PowerPoint documents.


Full Article

Take a look at the best antivirus, anti-malware, anti-spy, etc. software

Powered by WPeMatico