Prashil Moon

About Prashil Moon

Prashil is a Threat Research Engineer at Quick Heal Security Labs. He enthusiastically keeps hunting for ongoing malware trends, runs analysis on malware families, and has a keen interest in blogging about trends observed during his research.

Email campaign using .url extensions to abuse Internet Explorer vulnerabilities (CVE-2016-3353)

  • 8
 March 14, 2018

Estimated reading time: 4 minutes

In the wild, malspam campaigns are a major medium to spread malware. Previously, we have written about such campaigns using MS Office files with malicious macro and using vulnerabilities. Recently, we observed a spam campaign that uses .url files as a first-stage downloader to spread malware and bypass security features....

New fake resume email campaign infecting users with the SmokeLoader malware

  • 22
 January 29, 2018

Estimated reading time: 4 minutes

Email attachments are a favorite medium for attackers to deliver malware. They can be used to target a specific user or multiple users at the same time by launching spam email campaigns. To succeed in carrying out an intended malware attack, it is necessary that recipients of the malicious email...

Chrome extensions exploited in a massive PUA campaign

  • 39
 January 11, 2018

Estimated reading time: 4 minutes

Browser extensions also known as add-ons or plug-ins are programs that extend the functionality of a web browser making it more convenient to use and giving a better browsing experience. Browser extensions are commonly used to Enhance the appearance as per convenience Add to the functionality of the browser Incorporate...

Quick Heal is compatible with Microsoft’s Jan 3 update for Meltdown and Spectre

 January 9, 2018

Estimated reading time: 2 minutes

This is an important advisory for our readers about the recently discovered CPU exploits called Meltdown and Spectre. As per the recent disclosure of Meltdown and Spectre vulnerability in popular CPUs, successful exploitation of these vulnerabilities will potentially allow an attacker to access recently accessed sensitive information like usernames and...