RV_ Posted May 10, 2018 Report Share Posted May 10, 2018 I know, MS already fixed it yesterday, but it served to get the attention needed for folks that are not patching their Windows machine. This is another Patch Tuesday that needs to be done ASAP because the vulnerabilities it fixes are being attacked now. Excerpt: "Observed attacks have started with a malicious Word document, which when opened downloads an exploit written in VBScript that's hosted on a webpage, according to malware analysts at Kaspersky Lab. The analysts are also confident the exploit they found is the same as the Double Kill attack Qihoo 360 Core Security reported. While the zero-day attacks are likely to be the work of state-sponsored attackers, Kaspersky Lab predicts it will become popular with cybercriminals as part of an exploit kit's arsenal for compromising Windows PCs in web-based attacks. That's because the technique allows an attacker to force IE to load and exploit the flaw on an unpatched machine even if victims have set Chrome or Firefox as the default browser." All the technical details are in the full article here with related links here: https://www.zdnet.com/article/windows-critical-flaw-this-security-bug-is-under-attack-right-now-says-microsoft/?ftag=TREc64629f&bhid=19724681974700635514865380622813 Safe computing! Link to comment Share on other sites More sharing options...
This topic is now archived and is closed to further replies.