Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-Attacks
Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says
Microsoft Office is a productivity software suite whose documents, add-ins, and vulnerabilities can expose data and compromise enterprise systems.
Search across headline titles and summaries.
Background for this topic.
Microsoft Office is a suite of productivity applications including Word, Excel, PowerPoint, and Access, delivered as desktop software and, in many environments, through Microsoft 365 services. Its files are common in business workflows, so Office security advisories, file-format changes, and configuration guidance can affect a broad range of users and systems.
Office documents can carry malicious macros, embedded objects, templates, or links, and vulnerabilities in an application or document parser may enable code execution when a file is opened or previewed. Useful controls include timely patching, restricting macros to trusted, signed sources, using Protected View, and inspecting attachment and download provenance. Cloud use adds security responsibilities around identity, external sharing, delegated application access, and retention of sensitive documents; monitoring sign-ins and sharing events helps distinguish an exploited endpoint from an account or configuration problem.
Weekly headline count for the current query.
Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says
Microsoft urged customers running Microsoft Office 2016 and 2019 to apply the patch to be protected
SmokeLoader malware identified targeting Taiwanese firms via phishing, exploiting Microsoft Office vulnerabilities
The Kaspersky report also revealed an average detection of 411,000 malicious files per day
Harvesting API keys and secrets from AWS SES, Microsoft Office 365 and other services
Initial infection begins with a phishing email containing a Microsoft Office attachment
The malware was first released for sale on January 26, 2022 as an HVNC implant, but later evolved