It is currently 24-09-2017 15:09

Hackers continue to exploit fixed 4 years ago a vulnerability in Microsoft Office

Hackers continue to exploit fixed 4 years ago a vulnerability in Microsoft Office

by sigismund » 2016-07-06 09:50:25


Stable exploitation of the same vulnerability for such a long time is rare.


Attackers continue to exploit a vulnerability in Microsoft Office (CVE-2012-0158) that were fixed in 2012. According to Sophos researcher Graham Chantry (Graham Chantry), so unusual "vitality" of the unpatched vulnerability affecting versions of Office 2003, 2007 and 2010, due to its presence in the sets of exploits and persistent unwillingness of users to install updates.

As noted by the researcher, not only individual users, but big companies lag behind even the pirates, offering on the black market unlicensed copies of the latest version of Office. According to him, the fact that attackers prefer some of the vulnerability of others, is not something unusual. However, the stable exploitation of the same vulnerability for such a long time is rare.

In the present campaign, during which attackers exploit the vulnerability, not so big, but to talk about their termination is still early. The most resonant operations using CVE-2012-0158 are Red October, FakeM and Rotten Tomato. As explained by the expert hackers have found a way to hide exploits using RTF files and the encryption Word and Excel.
sigismund
moderators
Сообщений: 788
Депозит: 0 BTC

Rating: 5