Excel introduced Excel 4.0 Macros (XLM) feature in 1992. Since then, this style has been commonly used to abuse Visual Basic for Applications (VBA). In 2020, it became popular amongst attackers as this macro is challenging to catch in detection; thus, many cybersecurity providers struggle to defend against Excel 4 macro-based attacks. This allows attackers to explore deeper into XLM
The colonial pipeline ransomware attacks $5 million paid, stole 100GB of Data, shut down the pipeline and website presence. It was the largest Cyberattack on an oil infrastructure target in the history of the United States. Our team started research on Darkside from an early uprising of the ransomware-as-a-Service operator and tracking all intelligence covered by the R&D center and partnered malware