Information Security

 

Critical zero-day vulnerability in Microsoft Office

Tuesday, April 11, 2017

A recently discovered critical zero-day attack is being abused to distribute malware. The attack exploits a currently unpatched vulnerability in Microsoft Office to download and execute malicious code on victims' computers. OxCERT would like to warn against opening Office attachments from unknown sources. It is believed, that using Protected View (https://support.office.com/en-us/article/What-is-Protected-View-d6f09ac7-e6b9-4495-8e43-2bbcdbcb6653) is a good measure of protecting against the attack.

 

https://securingtomorrow.mcafee.com/mcafee-labs/critical-office-zero-day-attacks-detected-wild/

 

[RZ]