Microsoft Word – Page 11 – WindowsTechs.com

Source Code for CIA’s Tool to Track Whistleblowers Leaked by Wikileaks

Posted on April 28, 2017 by Swati Khandelwal

Wikileaks has just published a new batch of the Vault 7 leak, exposing the documentation and source code for a CIA project known as “Scribbles.”

Scribbles, a.k.a. the “Snowden Stopper,” is a piece of software allegedly designed to embed ‘web beacon’ t… Continue reading Source Code for CIA’s Tool to Track Whistleblowers Leaked by Wikileaks→

Source Code for CIA’s Tool to Track Whistleblowers Leaked by Wikileaks

Posted on April 28, 2017 by Swati Khandelwal

Wikileaks has just published a new batch of the Vault 7 leak, exposing the documentation and source code for a CIA project known as “Scribbles.”

Iran-linked hackers used Microsoft Word flaw against Israeli targets, security firm says

Posted on April 27, 2017 by Patrick Howell O'Neill

Hackers allegedly linked to the Iranian government launched a digital espionage operation this month against more than 250 different Israel-based targets by using a recently disclosed and widely exploited Microsoft Word vulnerability, cybersecurity experts tell CyberScoop. The hacking group, dubbed OilRig by security researchers and believed to be tied to Iranian intelligence services, utilized a software flaw in Word officially known as CVE-2017-0199 that allows attackers to execute a remote computer intrusion to take full control of a target device while leaving little or no trace, said Michael Gorelik, vice president of Israeli security firm Morphisec. Over the last month, Morphisec has investigated the incident on behalf of multiple victims. Clients showed forensic evidence on their respective networks that could be linked back to OilRig. After its disclosure in March, CVE-2017-0199 was quickly exploited by nation-states and cybercriminals alike. OilRig has been around since at least 2015, according to numerous security industry experts who have […]

The post Iran-linked hackers used Microsoft Word flaw against Israeli targets, security firm says appeared first on Cyberscoop.

Continue reading Iran-linked hackers used Microsoft Word flaw against Israeli targets, security firm says→

Not Just Criminals, But Governments Were Also Using MS Word 0-Day Exploit

Posted on April 13, 2017 by Swati Khandelwal

Recently we reported about a critical code execution vulnerability in Microsoft Word that was being exploited in the wild by cyber criminal groups to distribute malware like Dridex banking trojans and Latentbot.

Now, it turns out that the same previou… Continue reading Not Just Criminals, But Governments Were Also Using MS Word 0-Day Exploit→

Microsoft Issues Patches for Actively Exploited Critical Vulnerabilities

Posted on April 12, 2017 by Swati Khandelwal

Besides a previously undisclosed code-execution flaw in Microsoft Word, the tech giant patches two more zero-day vulnerabilities that attackers had been exploiting in the wild for months, as part of this month’s Patch Tuesday.

In total, Microsoft patc… Continue reading Microsoft Issues Patches for Actively Exploited Critical Vulnerabilities→

Microsoft patches Word zero-day vulnerability being actively exploited in attacks

Posted on April 12, 2017 by Graham Cluley

Microsoft has issued patches for 44 vulnerabilities, 13 of which are rated “critical”.
Continue reading Microsoft patches Word zero-day vulnerability being actively exploited in attacks→

Microsoft Patches Word Zero-Day Spreading Dridex Malware

Posted on April 11, 2017 by Tom Spring

A Microsoft Word zero-day vulnerability is being used to spread the Dridex banking Trojan in attacks that have bypassed mitigation efforts. Continue reading Microsoft Patches Word Zero-Day Spreading Dridex Malware→

Unpatched Microsoft Word Flaw is Being Used to Spread Dridex Banking Trojan

Posted on April 11, 2017 by Swati Khandelwal

If you are a regular reader of The Hacker News, you might be aware of an ongoing cyber attack — detected in the wild by McAfee and FireEye — that silently installs malware on fully-patched computers by exploiting an unpatched Microsoft Word vulnerability in all current versions of Microsoft Office.

Now, according to security firm Proofpoint, the operators of the Dridex malware started

Continue reading Unpatched Microsoft Word Flaw is Being Used to Spread Dridex Banking Trojan→

Beware of an Unpatched Microsoft Word 0-Day Flaw being Exploited in the Wild

Posted on April 9, 2017 by Swati Khandelwal

It’s 2017, and opening a simple MS Word file could compromise your system.

Security researchers are warning of a new in-the-wild attack that silently installs malware on fully-patched computers by exploiting a serious — and yet unpatched — zero-day vulnerability in all current versions of Microsoft Office.

The Microsoft Office zero-day attack, uncovered by researchers from security firms

Continue reading Beware of an Unpatched Microsoft Word 0-Day Flaw being Exploited in the Wild→

Operation BugDrop – hackers steal gigabytes of data from organisations, record conversations

Posted on February 22, 2017 by David Bisson

Victims of the secret surveillance operation have included a manufacturer of industrial control system monitoring equipment, a human rights institution, and a scientific research institute.
David Bisson reports.
Continue reading Operation BugDrop – hackers steal gigabytes of data from organisations, record conversations→