Tag

Macro

3 briefs RSS

Microsoft Excel XLM Macro Remote Code Execution on macOS

A logic flaw in Microsoft Excel allows remote code execution on macOS via malicious XLM macros in SYLK files, bypassing the 'Disable all macros without notification' setting.

exploited Excel +4 xlm rce macro macos sylk

3r Jan 3, 2024

medium advisory

MS Office Macro Security Registry Modifications

2 rules 2 TTPs

Attackers may modify Microsoft Office registry settings related to macro security (AccessVBOM, VbaWarnings) to disable security warnings, enabling malicious macros for persistence and further compromise.

Microsoft Office office macro registry defense-evasion windows

2r 2t Jan 2, 2024

medium advisory

Detection of Office Macro File Creation

2 rules 1 TTP

This brief outlines a threat involving the creation of new Office macro files, potentially indicating malicious activity such as phishing or malware distribution, targeting Windows systems.

Microsoft Office initial-access phishing macro

2r 1t Jan 2, 2024