Risky bank fraud exploiting huge hole in Microsoft Word

Risky bank fraud exploiting huge hole in Microsoft Word

Attackers have been exploiting a zero-day vulnerability in Microsoft Word since January to infect computers with malware.

The attack entails a threat emailing a Microsoft Word document to a victim user with an installed OLE2link object.

It affects all current Office versions used on every Windows operating system, including the latest Office 2016 running on Windows 10.

Several research groups say the bug was being exploited as early as January to remotely install a spy program for carrying out espionage created by FinSpy, associated with Germany and UK-based "lawful intercept" firm, Gamma Group, which sells nearly exclusively to nation state hackers. The latter said it had shared the details of the Office security exploit with Microsoft and had been withholding details for the company to be able to deliver a patch before going public with the information. "According to our tests, this active attack can not bypass the Office Protected View, so we suggest everyone ensure that Office Protected View is enabled, said McAfee". It's not yet known if the use of Microsoft's Enhanced Mitigation Experience Toolkit prevents the malicious malware from working.

To mitigate the security flaw, users should download the most recent patch from Microsoft. It then executes it as a.hta file.

Malala Yousafzai made UN Messenger of Peace
Today, I am proud to designate you the youngest ever United Nations Messenger of Peace, with a special focus on girls' education. Many are forced to marry early or must work or care for younger siblings, denying them their right to education.

But presently security leaders FireEye and McAfee have found an another attack procedure that takes the support of Windows Object Linking and Embedding (OLE).

So, if you receive a shady email message asking you to download the document and open it immediately. In this case, it's a Word document that contains an embedded exploit. It's hard to excuse the silence given the scope of the exploit campaign reported by Proofpoint, which is now at least the third security company to publicly warn of the critical vulnerability since Friday. "Microsoft Office users are recommended to apply the patch as soon as it is available", FireEye writes regarding what to do to combat the malware.

The attack was capable of bypassing numerous mitigation systems built into Microsoft Office and Windows created to stop malicious files from executing. That means people should think carefully before editing or printing a received document or doing anything else that requires Protected View to be disabled.

In tests carried out by McAfee, Li said the attack can not bypass the Office Protected View.

In its bulletin, Microsoft said the security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file.

Related Articles

  • Nintendo Direct This Week Will Focus on Splatoon 2 and Arms

    It's expected that fans will finally learn the release dates for both titles, which are penciled in for launches in 2017. As picked up by Eurogamer , Nintendo is now offering monetary rewards for info on Switch security weaknesses.
    Burger King's Whopper gets negative definitions in ad stunt

    Burger King's Whopper gets negative definitions in ad stunt

    TV commercials have historically triggered assistants unintentionally and often to comedic effect. It actually looks like Burger King went and edited the Whopper entry ahead of this ad being run.

    'Only time will tell' on improving US-China trade

    It was the first direct US assault on the Russian-backed government of Syrian President Bashar al-Assad in six years of civil war. Tillerson said Xi agreed with Trump that North Korea's nuclear advances had reached a "very serious stage".
  • Browns mull Garrett, Trubisky at No. 1

    Browns mull Garrett, Trubisky at No. 1

    Oh, and in the event you were wondering what this latest interview did for those pumping ammo into the Inane Hot Take Cannon... In addition to sitting down for an in depth piece with ESPN's Sam Alipour , Garrett did a lot of talking earlier this week.

    Seoul: North Korea fires ballistic missile off east coast

    Two weeks ago, the South Korean and US militaries said they had detected a failed North Korean ballistic missile launch. The 60 kilometers is a relatively short flight compared with the distances that other North Korean missiles flew.
    Acquires Steamboat, operator of Winter Park resort

    Acquires Steamboat, operator of Winter Park resort

    The purchase brought Vail Resorts to a dozen ski areas, all of them destination resorts that court overnight guests. The move will add to Aspen Skiing's four resorts: Snowmass, Buttermilk, Aspen Mountain and Aspen Highlands.
  • Longoria breaks up Pineda's perfect-game bid in 7th

    Longoria breaks up Pineda's perfect-game bid in 7th

    Souza has been the Rays' best hitter so far and takes a.417 average into Monday - just in time for another trip to NY . NY built six new fan gathering areas in the stands, including two where there had been obstructed-view bleacher seats.
    NFL will fine players for attending event at Las Vegas casino

    NFL will fine players for attending event at Las Vegas casino

    The NFL said it was unclear how many players participated. "This is one of those things you don't even think about", he said. After all, it's the league and its owners who couldn't resist the dollar signs attached to having a franchise in Las Vegas .

    Man who killed wife at California school called her 'angel'

    North Park Elementary was on lockdown, and Hillside Elementary School and Cajon High School were placed on precautionary lockdown. In December 2015, San Bernardino was hit by a mass shooting at a meeting which left 14 people killed and 22 others injured.
  • Taiwan is about to make eating dogs and cats illegal

    Taiwan is about to make eating dogs and cats illegal

    Anyone caught in breach of the law could face up to two years in prison, as well as large fines and publication of their identity. The new law - an amendment to the existing Animal Protection Act - bans the "slaughter of dogs and cats for human consumption".

    Current Movers: BlackBerry Limited (BBRY), Bank of America Corporation (BAC)

    BlackBerry Ltd (NASDAQ: BBRY ) have shown a low EPS growth of -24.80% in the last 5 years and has earnings growth of 80.50% yoy. Inside the closing six months period the stock's performance declined -2.41% while overall yearly performance gained 8.45%.
    Syria, Russia to top agenda as G7 ministers meet

    Syria, Russia to top agenda as G7 ministers meet

    That is why we are here to work all together for peace and liberty". Tillerson was more equivocal about Assad's future on Sunday.