News, tips, advice, support for Windows, Office, PCs & more
Home icon Home icon Home icon Email icon RSS icon

We're community supported and proud of it!

  • Tasks for the weekend – checking those URLs

    Posted on October 10th, 2021 at 00:08 Comment on the AskWoody Lounge

    Youtube here showcasing the malicious email

    So today I got an email that almost ‘caught’ me. It was a fedex email that looked nearly legit. But if you hovered over the links, they clearly were not proper for fedex.

    I wanted to see what the links were trying to do. Come to find out they were attempting to install/download a .jar (java archive file) file. Yet virustotal indicates that no one has reported it malicious. (Reverse.it report here)

    It reminded me that too often these older style of files can be used to infect our systems. Just for grins I tested to see what would happen if I tried to click on the link in a virtual machine. In the case of edge and Chrome browsers it was automatically blocked. Firefox still tried to download it.

    But what about Office macros?  Another way that bad guys try to get in?

    Later on this year, Microsoft will be blocking these older Excel 4.0 style macros by default in Microsoft 365 because that’s become a key way that ransomware enters into systems.

    So what about you?  Do you hover over links before you click?