Hackers Use Excel Exploit to Hide XWorm 7.2 in JPEG Files, Hijack PCs

A new phishing campaign is using a malicious Excel exploit (CVE-2018-0802) to hide the XWorm 7.2 malware within seemingly normal JPEG files, which then hijacks PCs by using a technique called process hollowing to disguise itself as a legitimate Windows program.