Outlook Add‑In Hijack, Wormable IoT Botnet, and AI‑Crafted Malware Threaten Defenders

A wave of malicious Outlook add‑ins surfaced this week, targeting enterprise mailboxes to intercept, modify, and forward messages. The add‑ins were distributed via compromised software updates and phishing campaigns, allowing threat actors to harvest credentials, exfiltrate sensitive data, and embed further payloads directly into legitimate communications. Because the code runs within the trusted Outlook environment, traditional email filters often missed the activity until anomalous traffic patterns were observed.

In parallel, researchers uncovered a wormable botnet that leverages unpatched IoT firmware to propagate automatically across networks of smart cameras, routers, and industrial controllers. The botnet’s self‑spreading capability, combined with AI‑generated malware that evades static analysis, raises the risk of rapid, large‑scale infections. Defenders must prioritize patch management for IoT assets, enforce strict add‑in whitelisting in Office environments, and deploy behavior‑based detection to counter these evolving, multi‑vector threats.

Categories: Malware & Ransomware, Vulnerabilities & Exploits, AI Security & Threats

Source: Read original article