Hackers abusing this perfectly innocent Windows 10 feature to infect machines
News Highlights: Hackers abusing this perfectly innocent Windows 10 feature to infect machines.
The Windows Finger command used to display information about users on a remote computer is exploited by cyber attackers to infect Windows 10 devices with malware. It has been discovered that the command can be abused to download the MineBridge malware onto an unsuspecting victim’s device.
Bleeping Computer reports that security researcher Kirk Sayre has identified a new phishing campaign using the Finger Command. The campaign involves sending a job resume of an alleged candidate.
When a victim then clicks to edit the document, a macro is run that uses the finger command to download a Base64-encoded certificate that is essentially a malware executable. The downloader then uses DLL hijacking to sideload the MineBridge malware.
The finger of blame
The MineBridge malware was first identified a year ago by FireEye security researchers, with the campaign initially targeting financial services companies in the US. At the time a phishing campaign with a …
Read more from source
- Check the latest Hacking news updates and information.
- Please share this news Hackers abusing this perfectly innocent Windows 10 feature to infect machines with your friends and family to support us your one share helps us a lot.
- Follow us on Facebook and Twitter if you need more updates like this.
