Risky bank fraud exploiting huge hole in Microsoft Word

Risky bank fraud exploiting huge hole in Microsoft Word

Attackers have been exploiting a zero-day vulnerability in Microsoft Word since January to infect computers with malware.

The attack entails a threat emailing a Microsoft Word document to a victim user with an installed OLE2link object.

It affects all current Office versions used on every Windows operating system, including the latest Office 2016 running on Windows 10.

Several research groups say the bug was being exploited as early as January to remotely install a spy program for carrying out espionage created by FinSpy, associated with Germany and UK-based "lawful intercept" firm, Gamma Group, which sells nearly exclusively to nation state hackers. The latter said it had shared the details of the Office security exploit with Microsoft and had been withholding details for the company to be able to deliver a patch before going public with the information. "According to our tests, this active attack can not bypass the Office Protected View, so we suggest everyone ensure that Office Protected View is enabled, said McAfee". It's not yet known if the use of Microsoft's Enhanced Mitigation Experience Toolkit prevents the malicious malware from working.

To mitigate the security flaw, users should download the most recent patch from Microsoft. It then executes it as a.hta file.

Longoria breaks up Pineda's perfect-game bid in 7th
Souza has been the Rays' best hitter so far and takes a.417 average into Monday - just in time for another trip to NY . NY built six new fan gathering areas in the stands, including two where there had been obstructed-view bleacher seats.

But presently security leaders FireEye and McAfee have found an another attack procedure that takes the support of Windows Object Linking and Embedding (OLE).

So, if you receive a shady email message asking you to download the document and open it immediately. In this case, it's a Word document that contains an embedded exploit. It's hard to excuse the silence given the scope of the exploit campaign reported by Proofpoint, which is now at least the third security company to publicly warn of the critical vulnerability since Friday. "Microsoft Office users are recommended to apply the patch as soon as it is available", FireEye writes regarding what to do to combat the malware.

The attack was capable of bypassing numerous mitigation systems built into Microsoft Office and Windows created to stop malicious files from executing. That means people should think carefully before editing or printing a received document or doing anything else that requires Protected View to be disabled.

In tests carried out by McAfee, Li said the attack can not bypass the Office Protected View.

In its bulletin, Microsoft said the security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file.

Related Articles

  • Browns mull Garrett, Trubisky at No. 1

    Browns mull Garrett, Trubisky at No. 1

    Oh, and in the event you were wondering what this latest interview did for those pumping ammo into the Inane Hot Take Cannon... In addition to sitting down for an in depth piece with ESPN's Sam Alipour , Garrett did a lot of talking earlier this week.
    Warplane strikes Syrian town that was hit by chemical attack, again

    Warplane strikes Syrian town that was hit by chemical attack, again

    A chemical attack on the residential part of Khan Sheikhun killed 85 civilians, including 20 children and 13 women. Iran has provided crucial military and economic assistance to Assad throughout Syria's six-year civil war.

    Alabama Supreme Court lifts Bentley impeachment stay

    Robert Bentley speaks during the annual State of the State address at the Capitol on Tuesday, Feb. 7, 2017 in Montgomery, Ala. The 74-year-old governor hastily called a news conference in which he told constituents he knew he had let them down.
  • UP govt to take views of Muslim women on triple talaq issue

    UP govt to take views of Muslim women on triple talaq issue

    The submissions drawn by advocate Madhvi Divan have been settled by the Attornewy Genewral Mukul Rohatgi. A number of Muslim women have filed petitions to quash the practice of triple talaq and polygamy.

    Current Movers: BlackBerry Limited (BBRY), Bank of America Corporation (BAC)

    BlackBerry Ltd (NASDAQ: BBRY ) have shown a low EPS growth of -24.80% in the last 5 years and has earnings growth of 80.50% yoy. Inside the closing six months period the stock's performance declined -2.41% while overall yearly performance gained 8.45%.
    Seoul: North Korea fires ballistic missile off east coast

    Seoul: North Korea fires ballistic missile off east coast

    Two weeks ago, the South Korean and US militaries said they had detected a failed North Korean ballistic missile launch. The 60 kilometers is a relatively short flight compared with the distances that other North Korean missiles flew.
  • Taiwan is about to make eating dogs and cats illegal

    Taiwan is about to make eating dogs and cats illegal

    Anyone caught in breach of the law could face up to two years in prison, as well as large fines and publication of their identity. The new law - an amendment to the existing Animal Protection Act - bans the "slaughter of dogs and cats for human consumption".
    Burger King's Whopper gets negative definitions in ad stunt

    Burger King's Whopper gets negative definitions in ad stunt

    TV commercials have historically triggered assistants unintentionally and often to comedic effect. It actually looks like Burger King went and edited the Whopper entry ahead of this ad being run.
    US Missile Strike Destroyed a Fifth of Syria's Warplane Fleet, Pentagon Says

    US Missile Strike Destroyed a Fifth of Syria's Warplane Fleet, Pentagon Says

    In an interview with CBS , Tillerson described Russia's explanation for the suspected chemical attack as "not plausible" and "not credible".
  • Nintendo Direct This Week Will Focus on Splatoon 2 and Arms

    Nintendo Direct This Week Will Focus on Splatoon 2 and Arms

    It's expected that fans will finally learn the release dates for both titles, which are penciled in for launches in 2017. As picked up by Eurogamer , Nintendo is now offering monetary rewards for info on Switch security weaknesses.
    Sessions warns of 'Trump era' of immigration enforcement

    Sessions warns of 'Trump era' of immigration enforcement

    But when he delivered the speech in Nogales, Ariz., Sessions left off the end of the sentence and made some other tweaks. His name is Jeff Sessions, and illegal immigrants had better beware.
    Pistons lose final game at Palace of Auburn Hills

    Pistons lose final game at Palace of Auburn Hills

    The game tonight was the last Pistons game at the Palace before moving to downtown Detroit next season. Monday night was about appreciating the past and looking eagerly toward the future.