Skip to main content
Customer Support Customer Support

Booby-trapped Word documents in the wild exploit critical Microsoft 0day

  • April 9, 2017
  • 5 replies
  • 1 view
Jasper_The_Rasper
Moderator
Forum|alt.badge.img+54

There’s currently no patch for the bug, which affects most or all versions of Word.

 
            


 
Dan Goodin - 4/8/2017
 
There's a new zeroday attack in the wild that's surreptitiously installing malware on fully-patched computers. It does so by exploiting a vulnerability in most or all versions of Microsoft Word.
 
The attack starts with an e-mail that attaches a malicious Word document, according to a blog post published Saturday by researchers from security firm FireEye. Once opened, exploit code concealed inside the document connects to an attacker-controlled server. It downloads a malicious HTML application file that's disguised to look like a document created in Microsoft's Rich Text Format. Behind the scenes, the .hta file downloads additional payloads from "different well-known malware families."
 
Full Article
    ProTruckDriver
    Baldrick
    B

    5 replies

    Baldrick
    Gold VIP
    • Baldrick
    • Gold VIP
    • April 9, 2017
    These exploits only have traction because of the stupidity of users who fail to heed the basic rules...if you do not know who its and/or are not expecting the email then don't open it and certainly do not open any attachment included...doh! :@
    Webroot SecureAnywhere Complete Beta Tester v9.0.24.49, imaged by Macrium Reflect v7.2
    Jasper_The_Rasper
    B
    J
    rbarrow
    Community Guide
    Forum|alt.badge.img+17
    • rbarrow
    • Community Guide
    • April 10, 2017
    Right, you are! Here's an older article from the same resource with a rhetorical question:

    https://arstechnica.com/security/2016/03/its-2016-so-why-is-the-world-still-falling-for-office-macro-malware/
    Baldrick
    Jasper_The_Rasper
    B
    Jasper_The_Rasper
    Moderator
    Forum|alt.badge.img+54

    Fix will be released as part of the Patch Tuesday rollout

     
    Apr 11, 2017 11:13 GMT  ·  By Bogdan Popa Microsoft has confirmed that this month’s Patch Tuesday would bring an update aimed at fixing a vulnerability in Word that exposes users to malware infections.
     
    Disclosed by security company Fire Eye, the Microsoft Word security flaw makes it possible for hackers to hijack Windows computers with the help of a malicious RTF document that hides code which then triggers malware downloads on target systems.
     
    Full Article
    ProTruckDriver
    Baldrick
    J
    Baldrick
    Gold VIP
    • Baldrick
    • Gold VIP
    • April 11, 2017
    Thanks for the heads up, Jasper...good to know.
     
    This one is so serious that it is good to see Redmond moving with such alcrity to resolve the issue.
     
    Regards, Baldrick
    Webroot SecureAnywhere Complete Beta Tester v9.0.24.49, imaged by Macrium Reflect v7.2
    Jasper_The_Rasper
    J
    Jasper_The_Rasper
    Moderator
    Forum|alt.badge.img+54
    @ wrote:
    Thanks for the heads up, Jasper...good to know.
     
    This one is so serious that it is good to see Redmond moving with such alcrity to resolve the issue.
     
    Regards, Baldrick
    Just in time as well Baldrick:
    Oh my Microsoft Word: Dridex hackers exploit unpatched flaw
    Baldrick
    J
    Terms & ConditionsAccessibility statement