[HackerNews] New 0-Day Attack Targeting Windows Users With Microsoft Office Documents

Microsoft on Tuesday warned of an actively exploited zero-day flaw impacting Internet Explorer that’s being used to hijack vulnerable Windows systems by leveraging weaponized Office documents.
Tracked as CVE-2021-40444 (CVSS score: 8.8), the remote code execution flaw is rooted in MSHTML (aka Trident), a proprietary browser engine for the now-discontinued Internet Explorer and which is used in

Source: Read More (The Hacker News)

You might be interested in …

[ThreatPost] Bug in Millions of Flawed IoT Devices Lets Attackers Eavesdrop

All posts, ThreatPost

A remote attacker could exploit a critical vulnerability to eavesdrop on live audio & video or take control. The bug is in ThroughTek’s Kalay network, used in 83m devices. Source: Read More (Threatpost)

Read More

[ThreatPost] JBS Paid $11M to REvil Gang Even After Restoring Operations

All posts, ThreatPost

The decision to pay the ransom demanded by the cybercriminal group was to avoid any further issues or potential problems for its customers, according to the company’s CEO. Source: Read More (Threatpost)

Read More

[ThreatPost] Kids’ Apps on Google Play Rife with Privacy Violations

All posts, ThreatPost

One in five of the most-popular apps for kids under 13 on Google Play don’t comply with COPPA regulations on how children’s information is collected and used. Source: Read More (Threatpost)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.