Category Archives: responsible disclosure

Microsoft will patch Office zero day revealed by McAfee, FireEye

Posted on by

Microsoft says it is patching the zero day vulnerability in its ubiquitous Office suite of software applications revealed last week by McAfee. “We plan to address this through an update on Tuesday, April 11, and customers who have updates enabled will be protected automatically,” Microsoft said in a company statement emailed to CyberScoop. “Meanwhile, we encourage customers to practice safe computing habits online, including exercising caution before opening unknown files … to avoid this type of issue.” The vulnerability would allow a hacker to remotely take over a targeted computer — even one fully patched and up to date — as soon as the user opens an attachment. It exploits a flaw in Windows’ Object Linking and Embedding (OLE), an important feature of Office, which lets users embed or link to other Office documents, like spreadsheets or charts. But Microsoft initially learned of the vulnerability several weeks ago, from security firm FireEye, who had privately […]

The post Microsoft will patch Office zero day revealed by McAfee, FireEye appeared first on Cyberscoop.

Continue reading Microsoft will patch Office zero day revealed by McAfee, FireEye

Is that a VPN I see before me? [Chet Chat Podcast 239]

Posted on by

After a short break due to travel committments, the Chet Chat is back…enjoy! Continue reading Is that a VPN I see before me? [Chet Chat Podcast 239]