PowerShell used by malware to infect computers

By / June 1, 2017

According to the TrendLabs (TrendMicro) blog, the new type of malware, known as CRIGENT and nicknamed “Power Worm,” is delivered via infected Office files (Word docs or Excel spreadsheets). It contacts a malicious server and downloads a PowerShell script that sends info about the system back to the attacker and makes changes to registry entries to lower the Office security settings so it can infect all the Word and Excel files on the computer. Find out more about it here:

http://blog.trendmicro.com/trendlabs-security-intelligence/word-and-excel-files-infected-using-windows-powershell/

Read Next

Static vs Dynamic IP Address

Static vs Dynamic IP Address

Most people are familiar with Internet Protocol (IP) Addresses, but many people don’t know you have 2 types. In this article, you’ll learn about static…

Read More »

About The Author

Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top