Microsoft shares mitigation for Office zero-day exploited in attacks

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Attackers are actively exploiting a zero day vulnerability in many current versions of Office, Office , and Windows that requires no user. Microsoft has shared mitigation measures to block attacks exploiting a newly discovered Microsoft Office zero-day flaw abused in the wild to. This zero-day Windows flaw opens a backdoor to hackers via Microsoft Word. Here’s how to fix it. Microsoft recommends disabling a protocol used.
 
 

Windows troubleshooter zero day. This zero-day Windows flaw opens a backdoor to hackers via Microsoft Word. Here’s how to fix it

To receive periodic updates and news from BleepingComputer , please use the form below. Malwarebytes Anti-Malware. Everything Desktop Search. Zemana AntiLogger Free. Zemana AntiMalware. Windows Repair All In One. Read our posting guidelinese to learn what content is prohibited.

June 1, AM 2. Secure your system until an official fix is available This is where the 0patch micropatching service comes in, with free and unofficial micropatches for some versions of Windows impacted by the Follina security bug: Windows 11 v21H2 Windows 10 from v to v21H2 Windows 7 Windows Server R2 Instead of disabling the MSDT URL protocol handler as advised by Microsoft , 0patch has added sanitization of the user-provided path currently missing in the Windows script to avoid rendering the Windows diagnostic wizardry inoperable across the OS for all applications.

Sergiu Gatlan Sergiu Gatlan is a reporter who covered cybersecurity, technology, Apple, Google, and a few other topics at Softpedia for more than a decade. Email or Twitter DMs for tips. Previous Article Next Article. NoneRain – 2 months ago. Nemonton – 2 months ago. You may also like:. Popular Stories. Newsletter Sign Up To receive periodic updates and news from BleepingComputer , please use the form below.

Latest Downloads. Malwarebytes Anti-Malware Version: 4. Everything Desktop Search Version: 1. Zemana AntiLogger Free Version: 1. Login Username. Remember Me. Sign in anonymously. However, it notes: «If the calling application is a Microsoft Office application, by default, Microsoft Office opens documents from the internet in Protected View or Application Guard for Office, both of which prevent the current attack.

Home Innovation Security. Microsoft recommends disabling a protocol used for troubleshooting Windows bugs that attackers are abusing with a malicious Word document. Security How to find and remove spyware from your phone The 5 best browsers for privacy: Secure web browsing How to find out if you are involved in a data breach — and what to do next Hackers are still using these old security flaws in Microsoft Office. Make sure you’ve patched them How to delete yourself from search results and hide your identity online.

Windows 11 How to recover deleted files in Windows 10 or 11 The best Windows laptops: Top notebooks, 2-in-1s, and ultraportables I hate Windows How can I make it work more like Windows 10?

How to back up your files in Windows 10 and 11 with File History. Show Comments. Log In to Comment Community Guidelines. Related How to use your phone to diagnose your car’s ‘check engine’ light. How to use your phone to diagnose your car’s ‘check engine’ light. A recruiter asked a disgracefully rude question and acted as if it was normal. Delta just offended its most loyal customers and the question is why.