Recognizing these email attachments used by phishing emails could make a big difference towards a safer cyber experience.
Before these files (Word and Excel) could make changes in your system or macros, Office requires you to click on the 'Enable Editing' or 'Enable Content' button which you should never do as it'll enable them to infect your system.
The miscreants trick users by displaying a document template that displays that there is an error in viewing or displaying and ask the user to 'Enable Editing' or 'Enable Content'.
Here are some common phishing attachments used by malware attackers that you need to avoid-
BazarLoader
Malware developed by the TrickBot trojan group, they remotely access your computer to deploy the Ryuk ransomware to the whole network.
BazarLoader usually has phishing attachments containing Word or Excel documents hosted on Google Docs and Google Sheets.
These documents trick the user into downloading the executable file by displaying a template with the message that preview is not available or there were some problems and a link to download the file which then installs the BazaLoader malware.
Dridex
A trojan said to be linked with WastedLocker used to fish passwords and login credentials.
It is easy to identify Dridex attachments as they are usually more stylized with company logos and letterheads and contains text that is difficult to read (ei ..
Support the originator by clicking the read the rest link below.
