PCI Services Blog

Security Bulletin - Microsoft provides patch Office Word zero day flaw

Posted by Richard Common on 11-Apr-2017 11:42:00
Find me on:

A new zero-day security flaw that affects all versions of Microsoft Office - Word has been revealed. Researchers said thatmicrosoft-patches-serious-word-zero-day-security-flaw-pci-services.jpg the bug can be used to secretly install malware, even on fully patched machines. 

Cybersecurity firm Proofpoint announced it had discovered an email campaign targeting the bug that aimed to distributed Dridex malware.

Unlike common Word document attacks, this flaw doesn't rely on macros to execute. It is triggered when the victim opens a 'poisoned' Word document that downloads a fake Rich Text document from a server.  This document is, in reality, a malicious HTML application disguised as a Word document. This application then downloads and runs a script that is used to install additional malware in the background.

How to protect yourself before the patch is applied

  • Do not open any Office files obtained from untrusted locations.
  •  Enable Office Protected View since this attack cannot bypass it.

To open a document in Protected View, take these steps:

  1. Click File >> Open.
  2. On the Open dialog box, click the arrow next to the Open button.
  3. From the list, click Open in Protected View.

Book a Free Assessment

 

Related Articles:

Topics: Security, Microsoft, office 365

Leave a reply