Booby-trapped Word documents in the wild exploit critical Microsoft 0day - Printable Version +- Drunkard's Walk Forums (http://www.accessdenied-rms.net/forums) +-- Forum: General (http://www.accessdenied-rms.net/forums/forumdisplay.php?fid=1) +--- Forum: General Chatter (http://www.accessdenied-rms.net/forums/forumdisplay.php?fid=2) +--- Thread: Booby-trapped Word documents in the wild exploit critical Microsoft 0day (/showthread.php?tid=12393)

Booby-trapped Word documents in the wild exploit critical Microsoft 0day - SilverFang01 - 04-11-2017 Supposedly, there is a patch coming in later today, but better safe than sorry. "There's a new zeroday attack in the wild that's surreptitiously installing malware on fully-patched computers. It does so by exploiting a vulnerability in most or all versions of Microsoft Word." http://arstechnica.com/security/2017/0 ... soft-0day/ http://arstechnica.com/security/2017/0 ... -millions/ Drydex: also known as Bugat and Cridex is a form of malware that specializes in stealing bank credentials via a system that utilizes macros from Microsoft Word. - robkelk - 04-11-2017 So, turn off macros and/or use LibreOffice/OpenOffice instead of Word? -- Rob Kelk "Governments have no right to question the loyalty of those who oppose them. Adversaries remain citizens of the same state, common subjects of the same sovereign, servants of the same law." - Michael Ignatieff, addressing Stanford University in 2012 - Bob Schroeck - 04-11-2017 According to the first article, it's not necessary to have macros enabled for this exploit to run. -- Bob --------- Then the horns kicked in... ...and my shoes began to squeak.