In fact, the document we analysed for this article used only the new CVE-2015-1641 exploit, with the the three older exploits removed altogether. ![]() So it was just a question of time as to when Objekt would integrate the CVE-2015-1641 exploit into his MWI “cybercrime service”. In the past, MWI used a combination of older Office exploits known as CVE-2012-0158, CVE-2013-3906 and CVE-2014-1761.īut we reported recently that a new exploit, dubbed CVE-2015-1641, had found its way into the daily routine of cybercrime groups.Ī new exploit is always of interest to malware authors, because it extends their reach: they can now attack users who have patched recently, even if they can’t infect users who are completely up-to-date. We’ve been following Objekt’s business operation for a while, and we have already written about both the MWI tool and some of the malware campaigns it has serviced. The author of MWI, known as Objekt, offers a service to other cybercriminals, packaging their malware into exploit files, so they don’t need to become experts in Word files or exploits themselves. MWI can build booby-trapped files on demand, primed with malware that will be installed silently when the document is opened. #Update microsoft word 2015 codeThe idea is that instead of sending you an email with a link you have to click, crooks can send you an innocent-looking document with a believable backstory, such as a courier parcel that couldn’t be delivered, or a bogus invoice, or a fake quotation.ĭocuments are supposed to be data, not programs, so it ought to be safe to open them to see what’s inside.īut exploit kits like MWI can create documents that are unsafe to open, at least if you haven’t patched Word recently, because they deliberately trigger a bug, or vulnerability, which causes hidden program code inside the booby-trapped file to run without any prompts or warnings. ![]() Microsoft Word Intruder, or MWI for short, is a toolkit for sneaking malware onto your computer using booby-trapped Word files.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |