Microsoft warns of unpatched Office vulnerability leading to data exposure
-
Microsoft has disclosed an unpatched zero-day in Office that, if successfully exploited, could result in unauthorized disclosure of sensitive information to malicious actors.
Maybe they should save some time and warn us when Office isn't vulnerable?
-
Microsoft has disclosed an unpatched zero-day in Office that, if successfully exploited, could result in unauthorized disclosure of sensitive information to malicious actors.
Maybe they should save some time and warn us when Office isn't vulnerable?
Quote:
However, an attacker would have no way to force the user to visit the website. Instead, an attacker would have to convince the user to click a link, typically by way of an enticement in an email or Instant Messenger message, and then convince the user to open the specially crafted file
1-in-3 Click Suspicious Links & 1-in-5 Email Attacks Succeed[^] The 'convincing' part seems to be the easiest part. :(
"the debugger doesn't tell me anything because this code compiles just fine" - random QA comment "Facebook is where you tell lies to your friends. Twitter is where you tell the truth to strangers." - chriselst "I don't drink any more... then again, I don't drink any less." - Mike Mullikins uncle
-
Quote:
However, an attacker would have no way to force the user to visit the website. Instead, an attacker would have to convince the user to click a link, typically by way of an enticement in an email or Instant Messenger message, and then convince the user to open the specially crafted file
1-in-3 Click Suspicious Links & 1-in-5 Email Attacks Succeed[^] The 'convincing' part seems to be the easiest part. :(
"the debugger doesn't tell me anything because this code compiles just fine" - random QA comment "Facebook is where you tell lies to your friends. Twitter is where you tell the truth to strangers." - chriselst "I don't drink any more... then again, I don't drink any less." - Mike Mullikins uncle
jeron1 wrote:
However, an attacker would have no way to force the user to visit the website.
Maybe Copilot can be used for that? If AI can't make letting hackers in easier, what is it good for?
Our Forgotten Astronomy | Object Oriented Programming with C++ | Wordle solver
-
Quote:
However, an attacker would have no way to force the user to visit the website. Instead, an attacker would have to convince the user to click a link, typically by way of an enticement in an email or Instant Messenger message, and then convince the user to open the specially crafted file
1-in-3 Click Suspicious Links & 1-in-5 Email Attacks Succeed[^] The 'convincing' part seems to be the easiest part. :(
"the debugger doesn't tell me anything because this code compiles just fine" - random QA comment "Facebook is where you tell lies to your friends. Twitter is where you tell the truth to strangers." - chriselst "I don't drink any more... then again, I don't drink any less." - Mike Mullikins uncle
Given they've been adding exactly the same boilerplate text to virtually every security KB for at least the last two decades, I doubt they've paid any attention to studies that don't start with the assumption that the user is on a dial-up connection. :sigh: "If the computer starts screaming at you, pick up the handset of your land-line, and use the rotary dial to call the operator in order to disconnect the Internet."
"These people looked deep within my soul and assigned me a number based on the order in which I joined." - Homer
-
jeron1 wrote:
However, an attacker would have no way to force the user to visit the website.
Maybe Copilot can be used for that? If AI can't make letting hackers in easier, what is it good for?
Our Forgotten Astronomy | Object Oriented Programming with C++ | Wordle solver
Indeed. :)
"the debugger doesn't tell me anything because this code compiles just fine" - random QA comment "Facebook is where you tell lies to your friends. Twitter is where you tell the truth to strangers." - chriselst "I don't drink any more... then again, I don't drink any less." - Mike Mullikins uncle
