Financial services sector in the U.S. under barrage of cyberattacks last month. The attacks employed a known method called VBA Stomping to hide malicious macros. The emails were coming from fake domains that were geared to add legitimacy to the messages. The messages carried a convincing theme running throughout the proceedings, including a tax theme and an IRS-related tax form. The attack chain employed a technique known as VBA stomping to hide the malicious macros in Office documents.
Source: https://threatpost.com/us-finance-sector-targeted-backdoor-campaign/152634/

