Microsoft says to watch out for HTML smugglers packing Trojans

Microsoft wants to brand sure tech aficionados remain vigilant of the latest cyber threats, including HTML smuggling. HTML smuggling is a threat type the Microsoft 365 Defender Threat Intelligence Team has seen show upwardly with increasing frequency in attacks looking to offload remote access Trojans (RATs) and banking malware onto unsuspecting targets. Threat actors such every bit the ones backside the massive SolarWinds drama of 2022 and 2022 are an instance of those utilizing HTML smuggling.

Microsoft crafted a lengthy weblog post on the subject, outlining what the threat is, how it endangers users, and what it looks like in the wild. A chunk of the content is highly technical, but at that place's a lot of digestible, informative detail in at that place also. Hither's an excerpt:

As the name suggests, HTML smuggling lets an assaulter "smuggle" an encoded malicious script within a particularly crafted HTML attachment or web page. When a target user opens the HTML in their spider web browser, the browser decodes the malicious script, which, in turn, assembles the payload on the host device. Thus, instead of having a malicious executable pass directly through a network, the attacker builds the malware locally behind a firewall.

Spooky stuff, right? However, though that paragraph makes the threat piece of cake to comprehend, it also highlights why this may non end upward being a threat at all for a lot of people: It requires a voluntary click. And a lot of the time, an email packing danger is poorly written enough to unintentionally warn you in accelerate.

With that said, be sure to check out Microsoft'due south blog mail service for the full scoop on how HTML smuggling campaigns endeavor to dupe users into exposing their machines. Sometimes, malicious parties can be pretty convincing.

We may earn a commission for purchases using our links. Learn more.

It's here

The AT&T version of Surface Duo is now getting Android 11

Afterward a very long look, the original Surface Duo is now eligible to receive its over-the-air OS update to Android 11. Here is what is new and fixed with the biggest update all the same for Microsoft's first dual-screen Android device.