'Millions' of Microsoft Word users hit with banking virus exploiting unpatched vulnerability
Researchers at McAfee, who first reported the discovery Friday, said because the HTML application is executable, the attacker can run code on the affected computer while evading memory-based mitigations created to prevent these kinds of attacks.
An unpatched vulnerability in Microsoft Word is being exploited to forward Dridex malware to millions of unsuspecting users.
Critical vulnerabilities have also been patched in Hyper-V, Microsoft's virtualization hypervisor that's included in Windows Server 2008, 2012 and 2016, as well as in Windows 8.1 and 10.
Security researchers at McAfee were the first to publish information about the vulnerability, stating that the earliest attacks of this kind it has seen dates back to January this year.
The new vulnerability bug of Microsoft said to be a unsafe malware attack, according to McAfee anti-virus company.
In all, Microsoft released 15 updates on Tuesday patching dozens of individual flaws in software, including the Windows operating system, Exchange Server, and Adobe Flash.
Peter Capaldi knew his time was up in Doctor Who
Pearl - who plays Bill Potts in the new series - looked visibly shocked as she turned to Fern, who was biting her lip awkwardly. In the end, any Doctor Who story has such catastrophe going on in it, that he could be the one that gets the rock on his head.
North Korea calls US strikes on Syria 'unforgivable'
Proud mother Ivanka Trump, and her husband Jared Kushner, a close aide to President Trump, put the video on social media. This stands in great contrast with the strident Russian condemnation and denial of facts on the chemical attack itself.
Trump tells newspaper Obama aide might have broken the law
Ben Rhodes dismissed the controversy swirling around Rice over the "unmasking" of Trump officials in intelligence reports. On Wednesday, she said of Trump's comments, "I'm not going to dignify the president's ludicrous charge with a comment".
In its advisory, Microsoft notes, "A remote code execution vulnerability exists in the way that Microsoft Office and WordPad parse specially crafted files". However, Microsoft is aware of the vulnerability and we can expect a patch in the near future.
As soon as the file is opened, the PC downloads a file with HTML application, which enables the hackers to take over the victim's system entirely and access all its data. It allows applications to embed and link to documents and objects.
"The successful exploit closes the bait Word document, and pops up a fake one to show the victim".
But FireEye believes these attacks only began after the McAfee blog post and likely reverse engineered the vulnerability from the blog post. However, some users find Protected View noisome and disable it.
"This represents a significant level of agility and innovation for Dridex actors who have primarily relied on macro-laden documents attached to emails", said Proofpoint researchers, in an analysis of the offensive.
Enable Office Protected View since this attack can not bypass it.
"We want to deal with this through an upgrade on Tuesday April 11, and customers that have upgrades empowered will be protected mechanically", said a Microsoft spokesman.
North Carolina bill seeks to ban gay marriage
House Bill 780 is being called the "Uphold Historical Marriage Act " and, if passed, would cause the state to defy the U.S. Constitution and Supreme Court in favor of restoring the laws on marriage to their former, exclusionary, form.
Hacking Nintendo's Switch could score you $20000
Shifty and if you've not seen anything of it so far, its basically a sort of top-down heist game in the style of Hotline Miami . BGR , on the other hand, reports that Nintendo has already given players a chance to test Splatoon 2 last March.
In surprise move, Iran's Ahmadinejad to run for president
The former president's chances at recapturing the office, though, seem highly unlikely - at least from a qualifying standpoint. The council is typically responsible for disqualifying the majority of registrants for making it to the final candidates list.
A long, tearful road to a major for Sergio Garcia
Garcia has been plagued by self doubt in the majors and once said he did not have what it takes to be a major victor . He fell out of the race on the front nine by shooting a 38, then added two more bogeys and a double through 14.
North Korea says Syria airstrikes prove its nukes justified
China is North Korea's economic lifeline and as such enjoys more leverage over its maverick neighbour than any other country. According to the report, the White House hopes that China will help put diplomatic pressure on North Korea.
Royals honor late Yordano Ventura before home opener vs A's
Victor Baez, the Royals' Dominican Academy coordinator and a father figure to Ventura, was in the Buck O'Neil seat. The Royals honored Yordano Ventura, who was killed in January in a vehicle accident in the Dominican Republic.
Red Sox place Jackie Bradley, Jr. on 10-day disabled list
Red Sox manager John Farrell said the team would withhold a decision on Bradley's status until he sees the doctors at home. Shortstop Xander Bogaerts is expected to rejoin the team for Tuesday's game at Fenway Park against the Baltimore Orioles.
Five bodies found after Canada snow slide
The weather in the area, north of Vancouver, has been harsh and unstable since Friday. "They didn't do anything wrong", he said. Colwell said the victims were from British Columbia's Lower Mainland and were part of a regular hiking group.
Macron favorite in French election, Le Monde poll says
Far-left candidate Jean-Luc Melenchon, who has the backing of the Communists, rounds out the field. "Nationalism is war", he said. The final result of an election that is being watched closely around the world is still seen as highly unpredictable.
As Model 3 excitement builds, Tesla hits an incredible milestone
They also stated that Tesla will begin Model 3 deliveries this year and not in the middle of next year as previously assumed. Others ahead of Tesla are No. 1 Toyota at $172 billion market cap followed by Daimler Chrysler, Volkswagen and BMW.
Apr 13 2017