HackDig : Dig high-quality web security articles for hacker

[SANS ISC] Getting some intelligence from malspam

2017-09-18 08:05

I published the following diary on isc.sans.org: “Getting some intelligence from malspam“.

Many of us are receiving a lot of malspam every day. By “malspam”, I mean spam messages that contain a malicious document. This is one of the classic infection vectors today and aggressive campaigns are started every week. Usually, most of them are blocked by modern antivirus or anti-spam but these files could help us to get some intelligence about the topic used by attackers to fool their victims. By checking the names of malicious files (often .rar, .gip or .7r archives), we found classic words like ‘invoice’, ‘reminder’, ‘urgent’, etc… [Read more]

[The post [SANS ISC] Getting some intelligence from malspam has been first published on /dev/random]


Source: /mapslam-ecnegilletni-gnitteg-csi-snas/81/90/7102/eb.llehstoor.golb

Read:1321 | Comments:0 | Tags:Malware Security Splunk Intelligence SANS ISC

“[SANS ISC] Getting some intelligence from malspam”0 Comments

Submit A Comment

Name:

Email:

Blog :

Verification Code:

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud