In recent spam campaigns, the ZLoader malware family has moved to a new delivery method, obtaining malicious code only after the initial attachment has been opened, according to McAfee.
ZLoader is spread through spam emails with a variety of attachments, the most current of which contained Microsoft Word documents. The bait document is intended to persuade the victim to enable macros, which are normally disabled in Microsoft Office.
To avoid detection, the macros in the attachments don’t carry malicious code themselves, instead retrieving it from a remote address once the document is opened.
To Read More: securityweek
For more such updates follow us on Google News ITsecuritywire News.