Millions of people around the world are understandably curious about Windows 11. It’s easy to understand why. A new OS offered by the company that makes the most widely OS used on the planet is a big deal.
Unfortunately hackers are well aware of this and are currently using that curiosity as a means of spreading malicious software to unsuspecting victims.
Security researchers have found evidence suggesting that the notorious “FIN7” cyber gang is responsible for the latest campaign which started in late June of this year (2021). That coincided with Microsoft’s early announcements about the release of Windows 11.
The current campaign seems to have concluded in late July. All expectations are that a new campaign will begin the next time Microsoft makes another major announcement about their new OS.
The hacking group used tried and true social engineering tactics creating a poisoned Word document filled with Windows 11 logos and imagery to pique a reader’s curiosity. If this poisoned document is opened readers will get a message saying that the advanced features of the document cannot be accessed unless macros are enabled. Naturally if the reader opts to enable macros this is the mechanism by which the malware payload is delivered.
It’s a vicious campaign designed to prey on people’s natural curiosity about something that’s almost certain to have a significant impact on them. Given that we can expect to see more of these types of campaigns as Microsoft moves closer to the Windows 11 launch date.
If you get an email (regardless of who it is from) and that message asks you to download something or enable macros, just say no. Few if any reputable companies require such things to view their content and these are almost always signs that someone is trying to scam or hack you.