Followers | 689 |
Posts | 143817 |
Boards Moderated | 35 |
Alias Born | 03/10/2004 |
Wednesday, September 08, 2021 9:52:44 AM
By: Mariella Moon | September 8, 2021
Attackers are actively exploiting a Microsoft remote code execution vulnerability using malicious Office files, the tech giant has warned. The vulnerability known as CVE-2021-40444 affects Windows Servers from version 2008 and Windows 7 through 10. What attackers are doing is sending potential victims an Office file and tricking them into opening it. That file automatically opens Internet Explorer to load the bad actor's web page, which has an ActiveX control that downloads malware onto the victim's computer.
Several security researchers reported the zero-day attacks to Microsoft. One of them, Haifei Li of EXPMON, told BleepingComputer that the method is 100 percent reliable — all it would take to infect a system is for the victim to open the malicious file. In Li's case, the attack they came across used a .DOCX document. Microsoft has yet to roll out a security patch for the vulnerability, but it has published mitigation methods to prevent infection.
The tech giant says Microsoft Defender Antivirus and Microsoft Defender for Endpoint can both detect the vulnerability and prevent infection, so users need to keep them updated and running. Further, it advises disabling all ActiveX controls in Internet Explorer to render it inactive for all websites. Microsoft's security warning contains information how to do that, which involves updating IE's registry and rebooting the computer.
Read Full Story »»»
DiscoverGold
Information posted to this board is not meant to suggest any specific action, but to point out the technical signs that can help our readers make their own specific decisions. Caveat emptor!
• DiscoverGold
Recent MSFT News
- AIG names new CFO; Progyny Drops 24% After Losing Key 2025 Contract; Exicure Jumps 190% With Nasdaq Extension • IH Market News • 09/19/2024 10:26:48 AM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/18/2024 10:10:52 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/18/2024 10:10:24 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/18/2024 10:06:18 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/18/2024 10:05:47 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/18/2024 10:05:27 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/18/2024 10:05:04 PM
- Meta Strengthens Child Privacy on Instagram; Google Overturns $1.7 Billion Antitrust Fine; Snap Updates Spectacles • IH Market News • 09/18/2024 10:13:07 AM
- Blackbaud and Microsoft's Tech for Social Impact Team Collaborating to Bring Sophisticated Cloud Technology, AI and Analytics to Nonprofits • PR Newswire (US) • 09/17/2024 05:00:00 PM
- Microsoft Boosts Share Buyback, Raises Dividends by 10%, Intel Secures Chip Deal with Amazon • IH Market News • 09/17/2024 10:40:35 AM
- Microsoft announces quarterly dividend increase and new share repurchase program • PR Newswire (US) • 09/16/2024 09:56:00 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 10:08:25 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 10:08:03 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 10:07:41 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 10:07:15 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 10:06:49 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 10:06:17 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 10:05:35 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/13/2024 10:05:04 PM
- OpenAI Unveils Strawberry AI Model Series; Boeing Stock Falls 4% Amid Strike; HR Surges 20% on Growth Forecast • IH Market News • 09/13/2024 10:12:55 AM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/11/2024 10:07:41 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/11/2024 10:07:05 PM
- Form 4 - Statement of changes in beneficial ownership of securities • Edgar (US Regulatory) • 09/11/2024 10:06:43 PM
- Form 144 - Report of proposed sale of securities • Edgar (US Regulatory) • 09/10/2024 06:40:53 PM
- Form 144 - Report of proposed sale of securities • Edgar (US Regulatory) • 09/10/2024 04:00:41 PM
VHAI - Vocodia Partners with Leading Political Super PACs to Revolutionize Fundraising Efforts • VHAI • Sep 19, 2024 11:48 AM
Dear Cashmere Group Holding Co. AKA Swifty Global Signs Binding Letter of Intent to be Acquired by Signing Day Sports • DRCR • Sep 19, 2024 10:26 AM
HealthLynked Launches Virtual Urgent Care Through Partnership with Lyric Health. • HLYK • Sep 19, 2024 8:00 AM
Element79 Gold Corp. Appoints Kevin Arias as Advisor to the Board of Directors, Strengthening Strategic Leadership • ELMGF • Sep 18, 2024 10:29 AM
Mawson Finland Limited Further Expands the Known Mineralized Zones at Rajapalot: Palokas step-out drills 7 metres @ 9.1 g/t gold & 706 ppm cobalt • MFL • Sep 17, 2024 9:02 AM
PickleJar Announces Integration With OptCulture to Deliver Holistic Fan Experiences at Venue Point of Sale • PKLE • Sep 17, 2024 8:00 AM