User of Microsoft Word should be rather careful, because there is a zero day vulnerability within Microsoft Word. Now Dridex botnet sends millions of spam e-mails to users, containing malware attachments, addressing this Microsoft Word zero day exploit.
Two days ago, a zero day vulnerability in Microsoft Word has been reported. Not a massive malware campaign from Dridex botnet has been observed. The botnet sends millions of spam mails containing a Word attachment, that addresses this zero day vulnerability in Microsoft Word.
Dridex is known for distributing banking trojans. Proofpoint has published this blog post with details about the Dridex malware campaign. Currently it seems, that Microsoft is closing the zero day vulnerability in Microsoft Word today (04/11/2017). My suggestion: Be careful to open Word documents obtained via e-mail.
Cookies helps to fund this blog: Cookie settings