Drunkard's Walk Forums

Drunkard's Walk Forums > General > General Chatter > Booby-trapped Word documents in the wild exploit critical Microsoft 0day
Full Version: Booby-trapped Word documents in the wild exploit critical Microsoft 0day
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

SilverFang01

04-11-2017, 02:14 PM
Supposedly, there is a patch coming in later today, but better safe than sorry.

"There's a new zeroday attack in the wild that's surreptitiously installing malware on fully-patched computers. It does so by exploiting a vulnerability in most or all versions of Microsoft Word."
http://arstechnica.com/security/2017/0 ... soft-0day/

http://arstechnica.com/security/2017/0 ... -millions/

Drydex: also known as Bugat and Cridex is a form of malware that specializes in stealing bank credentials via a system that utilizes macros from Microsoft Word.

robkelk

04-11-2017, 02:42 PM
So, turn off macros and/or use LibreOffice/OpenOffice instead of Word?
--
Rob Kelk
"Governments have no right to question the loyalty of those who oppose
them. Adversaries remain citizens of the same state, common subjects of
the same sovereign, servants of the same law."

- Michael Ignatieff, addressing Stanford University in 2012

Bob Schroeck

04-11-2017, 06:46 PM
According to the first article, it's not necessary to have macros enabled for this exploit to run.
-- Bob
---------
Then the horns kicked in...
...and my shoes began to squeak.
Drunkard's Walk Forums > General > General Chatter > Booby-trapped Word documents in the wild exploit critical Microsoft 0day