Subj : Watch out that Microsoft OneDrive security warning could actuall To : All From : TechnologyDaily Date : Tue Jul 30 2024 20:45:05 Watch out that Microsoft OneDrive security warning could actually be a malware scam Date: Tue, 30 Jul 2024 19:36:52 +0000 Description: Hackers are giving old phishing technique a new twist, using OneDrive to trick victims into action. FULL STORY ====================================================================== Hackers are giving the old phishing with errors scam a modern twist in a bid to trick victims into downloading dangerous malware onto their PCs. Cybersecurity researchers from the Trellix Advanced Research Center have revealed how they recently observed a new campaign that targets Microsoft OneDrive users. In the campaign, the victims get an email address with a .HTML file attached, typically named Reports.pdf, in an attempt to trick the victim into thinking its an important, work-related document.When the victims open it, they get a window that resembles Microsoft OneDrive, with an error message stating that the device could not connect, and that the error needs to be addressed manually. Social engineering tactics Failed to connect to the 'OneDrive' cloud service. To fix the error, you need to update the DNS cache manually." The message reads. The window also features two buttons: Details, and How to fix. Clicking the Details button redirects the victims to a legitimate page on Microsoft Learn that discusses troubleshooting DNS problems. The how to fix button, though, triggers a function call GD, with a .js script embedded in the .HTML file. It also loads secondary instructions that the victims must follow. This campaign heavily relies on social engineering tactics to deceive users into executing a PowerShell script, thereby compromising their systems, the researchers explain. This combination of technical jargon and urgent error messages is a classic social engineering tactic, designed to manipulate the user's emotions and prompt hasty action without careful consideration. This hasty action includes bringing up the Windows PowerShell terminal and then pasting and executing a malicious command. The majority of the victims seem to be located in the US, South Korea, Germany, India, Ireland, Italy, Norway, and the UK. Ever since the death of the macro, cybercriminals have been looking for working alternatives to sharing malware via email. More from TechRadar Pro Phishing scams playbook: Adapting to keep up with malicious AI Here's a list of the best firewalls today These are the best endpoint protection tools right now ====================================================================== Link to news story: https://www.techradar.com/pro/security/watch-out-that-microsoft-onedrive-secur ity-warning-could-actually-be-a-malware-scam --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .