Necurs Botnet malspam pushes Locky using DDE attack
I’ve seen Twitter traffic today about malspam from the Necurs Botnet pushing Locky ransomware using Word documents as their attachments. These Word documents use the DDE attack technique, something I already wrote about in a previous diary covering Hancitor malspam on 2017-10-16. Here’s a link to My Online Security’s writeup about today’s malspam from the Necurs Botnet. I opened one of […]