Once again it's time for a Microsoft security breach that has the possibility of making your life miserable. The Russian hacking group Fancy Bear (or APT28) has found a flaw in Microsoft Office documents that can allow malware to be installed just by opening a document on your computer. This has been going on since late October and the subjects of the documents are related to US Army exercise in Eastern Europe known as SabreGuardian and the ISIS New York truck attack.

The Microsoft's Dynamic Data Exchange feature is designed to allow Office files to include links to other remote files and that's all that's needed to get the malware installed. It will usually ask the user if they want to update links from the remote file. The files are known to have names such as SabreGuard2017.docx and IsisAttackInNewYork.docx. Microsoft PowerShell scripting is used to install the malware called Seduploader on the users machine.

Microsoft Word Macro

Microsoft doesn't consider this a flaw on their end and say the software is working as intended but that people need to be more careful when opening files from un trusted sources. Even if it's from someone you know you should always be careful when opening email attachments especially if its forwarded from someone else rather than being a new email.

 

Pin It

Join Us On FaceBook

We Recommend:



Join Us On Twitter

Get insights into the computer industry and regular updates on our site. Click Here

OCT Youtube Channel

New tech tip videos posted on a regular basis. Subscribe today! Click Here

Sponsored

LATEST VIDEOS

Create a Windows iSCSI Storage Server Microsoft Windo...

Learn about Windows 10 Safe Mode and recovery options ...

Use a Static IP Address on an Azure Virtual Machine A...

Create a Virtual Machine in Microsoft Hyper-V If you ...

Enable the Copy and Paste Functionality in your VirtualB...

Microsoft uses default open and save options for its ...

RECENT TIPS

Create a Windows iSCSI Storage Server Microsoft Windo...

Learn about Windows 10 Safe Mode and recovery options ...

Configure a Domain Controller Using Installation Media ...

DVI vs. HDMI vs. DisplayPort Video Connections In order...

Use a Static IP Address on an Azure Virtual Machine A...

Create a Virtual Machine in Microsoft Hyper-V If you ...

NEWS

WPA3 Wireless Security is Coming to Save Us! Wi-Fi is a...

Will Net Neutrality Save or Destroy the Internet? Back ...

Who Will be the Future King of the Processor? When it c...

Microsoft Holds off on its Next Windows 10 Update Thanks...

YouTube taking money away from the little guys I’m sure...

Should you be concerned about the Spectre & Meltdown pat...