A group of hackers used a malicious Excel spreadsheet to bypass security checks on computers.
The malware gang Epic Manchego is specialised in targeting companies by sending malicious Excel files through phishing emails, security researchers from NVISO Labs said in a statement.
The malicious files were created using EPPlus software, and not Microsoft Office, to generate macro-laden Excel workbooks. This method reduces detection rate of these documents, and is typically lower than for standard malware docs.
When files are created using EPPlus tool, they lack a necessary compiled Visual Basic for Application (VBA) code. The algorithm to create compiled VBA code is proprietary to Microsoft, NVISO stated.
The first malicious document detected was created in June 2020, and since then over 200 malicious documents were found in two months.
United States, Czech Republic, France, Germany and China accounted for the majority of targeted regions. Files were presented in English, Spanish, Chinese and Turkish languages.
Recent uptick in detections confirm that the hacker group may be ramping up operations, the researchers said.
You have reached your limit for free articles this month.
Subscription Benefits Include
Today's Paper
Find mobile-friendly version of articles from the day's newspaper in one easy-to-read list.
Unlimited Access
Enjoy reading as many articles as you wish without any limitations.
Personalised recommendations
A select list of articles that match your interests and tastes.
Faster pages
Move smoothly between articles as our pages load instantly.
Dashboard
A one-stop-shop for seeing the latest updates, and managing your preferences.
Briefing
We brief you on the latest and most important developments, three times a day.
Support Quality Journalism.
*Our Digital Subscription plans do not currently include the e-paper, crossword and print.
A letter from the Editor
Dear subscriber,
Thank you!
Your support for our journalism is invaluable. It’s a support for truth and fairness in journalism. It has helped us keep apace with events and happenings.
The Hindu has always stood for journalism that is in the public interest. At this difficult time, it becomes even more important that we have access to information that has a bearing on our health and well-being, our lives, and livelihoods. As a subscriber, you are not only a beneficiary of our work but also its enabler.
We also reiterate here the promise that our team of reporters, copy editors, fact-checkers, designers, and photographers will deliver quality journalism that stays away from vested interest and political propaganda.
Suresh Nambath
Please Email the Editor