Microsoft Office vulnerability lets hackers use Word files to install malware

You might want to be extra careful about what files you open in Word over the next few days: Attackers are exploiting a previously undisclosed vulnerability in Microsoft Office to sneak malware into your system. The zero-day bug fundamentally relies on infected Word documents, which then download malicious HTML applications disguised as make-belief Rich Text files. Once executed, the HTML application connects to a remote server and runs a custom script designed to stealthily install malware. What is particularly worrying is that unlike regular macro hacks – which Office generally warns against when opening macro-enabled documents – the attack vector makes it…

This story continues at The Next Web

Or just read more coverage about: Microsoft

from https://thenextweb.com/security/2017/04/10/microsoft-office-word-malware/