After changing of the established by default folder for downloads attacker can only steal the document, but also implement in it malware code. If user opens such document, his device will be infected, explained specialist David Wells.
At the same time, for successful implementation of URL attacker will even not have to subscribe on Slack-channel – link can get in channel through RSS-feed.
“I can publish a post in popular society Reddit; Slack users from all over the world are subscribed on it. This publication will include web-link, that will redirect user on the malware slack:// and will change settings if clicking on it”, – says Wells.
As it is noted, in similar situation will be shown notification that link initiates Slack start, so attack will be impossible, if user will not provide his agreement.
Slack team have already released fixed Slack 3.4.0 version for Windows. All users are recommended to install updates ASAP.
Source: https://www.techrepublic.com
About Janorfeb.xyz Janorfeb.xyz pop-ups can not open out of nowhere. If you have clicked on…
About Re-captha-version-3-263.buzz Re-captha-version-3-263.buzz pop-ups can not launch out of the blue. If you have actually…
About Usavserver.com Usavserver.com pop-ups can not expose out of the blue. If you have clicked…
About Yourgiardiablog.com Yourgiardiablog.com pop-ups can not expose out of the blue. If you have actually…
About Bihanrit.xyz Bihanrit.xyz pop-ups can not launch out of nowhere. If you have actually clicked…
About Thenetaservices.com Thenetaservices.com pop-ups can not introduce out of the blue. If you have actually…