SANS Digital Forensics and Incident Response Blog: Category - Malicious Scripts

Inhibiting Malicious Macros by Blocking Risky API Calls

Microsoft Office Macros have been the bane of security analysts' lives since the late 1990s. Their flexibility and functionality make them ideal for malware authors to use as a primary stage payload delivery mechanism, and to datethe challenge they pose remains unsolved. Many organisations refrain from blocking them completely due to the impact it … Continue reading Inhibiting Malicious Macros by Blocking Risky API Calls


Leaving the Backdoor Open: Risk of Remotely Hosted Web Scripts

Many websites leverage externally hosted scripts to add a broad range of functionality, from user interaction tracking to reactive design. However, what you may not know is that by using them you are effectively handing over full controlof your content to the other party, and could be putting your users at risk of having … Continue reading Leaving the Backdoor Open: Risk of Remotely Hosted Web Scripts