VBS is a script language developed by Microsoft.
For specific tasks, it’s often easier to write a script than to use a formal programming language like ‘C’ or ‘C++’.
However, as with a formal program, it’s also possible to use VBS to create malicious code.
Since a script can be easily embedded in HTML, a cybercriminal can embed a malicious script within a web page, or within an HTML e-mail:
and when someone visits the page or reads the e-mail, the script runs automatically.