Click For Photo: https://regmedia.co.uk/2019/07/17/hacker_shutterstock.jpg
A 20-year-old man from the Netherlands accused of building and selling Office macro malware was arrested Wednesday.
The Dutch National Police's Office of the Team High Tech Crime (THTC) unit claimed the unnamed bloke, cuffed while on his computer as cops swooped on his home, was responsible for building, selling, and supporting the Rubella, Cetan, and Dryad malware kits.
Toolkits - Criminals - Office - Files - Macro
The toolkits allowed criminals to build Office files with malicious macro code embedded in the documents. When the victim opened the file, usually delivered by spear-phishing or spam, the macro code would then proceed to download and open the malware payload.
While macro attacks are relatively old-school and don't generate headlines the way more exotic exploits and other forms of infection do, the poisoned documents remain a tried-and-true way for criminals to sneak malicious code onto victim machines, particularly at the enterprise level where workers are used to opening documents without much scrutiny. In this case, the macro kits were every bit as polished and professional as other crimeware packages, police said.
Toolkit - Banners - Underground - Forums - John
"The toolkit was marketed with colorful banners on different underground forums," said John Fokker and Thomas Roccia, two McAfee...
Wake Up To Breaking News!