A new phishing campaign dubbed MirrorBlast is deploying weaponized Excel documents that are extremely difficult to detect to compromise financial service organizations
The most notable feature of MirrorBlast is the low detection rates of the campaign's malicious Excel documents by security software, putting firms that rely solely upon detection tools at high risk.
Featherlight macro with zero detections
The developers of these malicious documents have made considerable effort to obfuscate malicious code, achieving zero detections on VirusTotal.
