Whenever we surf the Internet in the back of your mind is always the thought "be careful what you click on." Malicious links lead to PC infections, ransomware, ID theft, and potentially an expensive repair bill. So we are all careful. But what if malware could be installed without requiring a mouse click? Turns out it can.
Security vendor Trend Micro recently discovered a new method of delivering malware that doesn't require a mouse click to trigger. Instead, the infection happens when the user's mouse pointer is hovered over a link placed in a PowerPoint presentation slide. The link can be attached to text or an image.
How effective this malware download method is depends on the version of Microsoft Office you are running. Older versions will allow a malicious PowerShell script to run, which in turn installs a banking trojan (a variant of the OTLARD trojan). Newer versions will throw up a "potential security risk" warning before the script can execute. As long as the user clicks the Disable button the script won't execute, but there's every chance a user won't register the warning and in haste click enable instead.
Related
- xLED Malware Steals Data Using Router LEDsxLED Malware Steals Data Using Router LEDs
The good news is, it's quite difficult to allow an infection to happen due to the multiple steps involved. The user has to be supplied with the malicious PowerPoint file vie an email, convinced to open it, and then must mouse over the "Loading... please wait" text present on the included slide. Even then, if PowerPoint has Protected Mode enabled, which it is by default on more recent versions, the script cannot run. It also won't run if you're using PowerPoint Online or Office 365's web mode.
Although the risk is small in this instance, it's worth highlighting because mouse hover is now a new attack vector. We are used to hovering a mouse pointer over things waiting for more information to appear. What software developers now need to ensure is that hovering cannot be used maliciously to execute code and cause a machine infection.
Crybercriminals have been using a technique that can infect your PC with a banking Trojan even if you don't click anything.
A link to a Russian malware controller was secretly hidden in a Britney Spears Instagram comment.
NHS servers struggle to cope as one email becomes millions.
As you type, Word recognizes certain sets of characters, such as web and UNC (Universal Naming Convention – a network resource) addresses, and automatically converts them to live hyperlinks. However, you may notice that addresses with spaces are not converted correctly.
When you work with webpage images in Firefox you normally have to use the Context Menu to do anything with them. The Image Toolbar extension provides an extra toolbar to use when you hover your mouse over webpage images.
Relax Hovering Mouse Over Hyperlink Causes Malware Infection stories
If your Android-powered phone or tablet is lost or stolen, follow these steps to set up the Android Device Manager now.
As well as domestic flights, dozens of airports spread across Europe, the Middle East, and Africa are also under consideration by Homeland Security.
Data is converted into a binary format and transmitted by flashing the LED activity lights while a nearby camera records their output.
A hacker broke into systems for the 'US operating region' and stole sensitive user data
Google's machine learning model in Gmail 'selectively delays messages … to perform rigorous phishing analysis.'
Researchers from security firm Check Point said 'hundreds of millions' of devices running media players such as VLC, Kodi, Popcorn Time, and Stremio are at risk.
Emails spoofed to look like they're coming from DocuSign are attempting to trick recipients into opening attached Word documents that contains malware.
Numerous hospitals across Britain were affected by the ransomware, requiring them to shut down their IT systems and turn patients away.
Rather than being malicious, this looks like negligence by developers. What's more concerning it it's been on HP systems since 2015.
The 'highly sophisticated' phishing campaign appears to have hit a number of journalists, along with individuals from other industries.
The malware is currently not detected by security suites and uses a valid Apple developer certificate to infect all versions of Mac OS X.
The practice of intercepting messages between Americans and foreigners that mention a terrorism suspect will end.
37 restaurants confirmed as having malware installed on point of sale equipment and card details stolen between December and March.
It was meant to be joke malware, but the author managed to infect himself, and the game is impossibly hard.
Tax-themed spam emails increased 6,000 percent from December 2016 to February 2017. Here are some common scams to look out for.
Moderators are never the star but, if they do their job well, every member of the panel will feel like one.
Bethesda's next Wolfenstein game, The New Colossus, is out on October 27th.
Egypt's autocratic regime asked Uber to let it track ridesharing trips.
EA goes full "Friday Night Lights" with "Longshot" mode in "Madden 18."
EA's new 'Star Wars' game makes you the hero of a villain's story.
Watch the first gameplay trailer for Anthem, the next game from BioWare.
The Better Together update unifies every edition of 'Minecraft' under the Bedrock Engine -- except PS4, Xbox 360 and Java.
Say hello to the Xbox One X.
Ever wonder why some racing games have pretty tame crashes? This is why.
NBA Live was on injured reserve in 2017, but its E3 demo shows a strong return could be in store for '18.
Our first impressions of 'FIFA 18,' which hits all the right notes yet again.