The Reporting and Analysis Center for Information Assurance (MELANI) published a warning about malicious Office documents in mail attachments last Friday. The number of spam campaigns with malicious Microsoft Office documents has increased rapidly in recent weeks. Spam campaigns aimed at infecting computers with malicious software (malware) are now being observed on an almost daily basis.
The malware that is spread via this attack vector is usually Locky (ransomware) or Dridex (eBanking Trojan). While Locky malware encrypts files on the victim’s computer and then extorts the victims, Dridex targets the eBanking accounts of Swiss Internet users. Currently, customers of several Swiss banks are targeted by Dridex.
In each case, the attacks are carried out via so-called macros. Microsoft has therefore disabled the execution of unsigned macros by default. Now the attackers are trying to convince the recipients of the e-mails to activate macros. MELANIE advises never to execute macros in Office documents sent via e-mail.
How can you additionally protect yourself from attacks by malicious Office documents? MELANI provides recommendations on this. Customers of the Swiss Business Cloud from youngsolutions are already protected in some respects.
Without up-to-date virus protection and regular backups, malware attacks can have severe consequences. In the Swiss Business Cloud from youngsolutions, your business data is protected in the best possible way. More Info.