banner-blog.jpg

MENLO SECURITY BLOG

Articles, trends, and advice on cloud security without compromise. Keep up with the latest blog insights on web isolation, network cybersecurity, malware, and more.

Increase In Attack: SocGholish

Posted by Krishnan Subramanian on Dec 17, 2020

Menlo Labs has uncovered a increase in a drive-by attack that impersonates legitimate browser, Flash, and Microsoft Teams updates

 

In the last two months, the Menlo Labs team has witnessed a surge in drive-by download attacks that use the “SocGholish” framework to infect victims. This particular framework is known to be widely used to deliver malicious payloads by masquerading as a legitimate software update. Isolation prevents this type of attack from delivering its payload to the endpoint. Here’s what we know.

 

Read More

Tags: drive-bys, SocGholish, social engineering, Chrome update, browser update, Microsoft Teams update, malicious ZIP file, malicious download, Firefox update, Flash update

Connect with us

Lists by Topic

see all

Recent Posts