Connection to DriversCloudCreate a DriversCloud.com accountReset your DriversCloud.com passwordAccount migration
Microsoft warns of undetectable Trojan deployment technique
HTML smuggling is gaining new "followers" every day because of the difficulty to stop it.
Not strictly speaking "new", theHTML smuggling technique consists of sending an HTML file as an attachment to an e-mail or by placing a simple link within the message. It is no longer a question of a file being directly "spoofed" in the e-mail. In fact, it is possible to bypass security software such as Windows Defender, which usually takes care of combing through attachments, but does not block on a simple HTML file that is harmless in itself.
HTML smuggling builds the malware parts piece by piece under the nose of all commonly used security tools. Microsoft cites the example of the Trickbot malware spread by a group named DEV-0193 by the publisher. Last September, the group sent various emails in order to install the malware in the "downloads" folder of the targeted machines. If the strategies put in place can indeed thwart security software, they still rely on the credulity of users.