More Users Attacked Through Legacy Microsoft Office Vulnerability in Q2: Report

The number of exploits for Microsoft Office suite vulnerabilities has increased, accounting for 82% of the total number of exploits across different platforms and software, such as Adobe Flash, Android, Java, etc. in the second quarter (Q2) of 2022, a report said on Tuesday.

According to a Kaspersky report, older versions of applications remain the top targets for attackers, with nearly 547,000 total users affected by corresponding vulnerabilities in the last quarter.

Additionally, the number of users affected by the Microsoft MSHTML Remote Code Execution vulnerability, which had previously been spotted in targeted attacks, skyrocketed eightfold.

“As the vulnerability is quite easy to use, we expect an increase in its exploitation. Criminals craft malicious documents and convince their victims to open them using social engineering techniques,” Kaspersky malware analyst Alexander Kolesnikov said in a statement.

“The Microsoft Office application downloads and then executes a malicious script. To be safe, it is essential to install the vendor’s patch, use security solutions capable of detecting the exploitation of vulnerabilities and keeping employees informed of modern cyber threats,” added Kolesnikov. .

Kaspersky experts found that exploits for the vulnerability, designated CVE-2021-40444, were used to attack nearly 5,000 people in the second quarter, eight times more than in the first quarter.

This zero-day vulnerability in Internet Explorer’s MSHTML engine was first reported in September 2021.

The engine is a system component used by Microsoft Office applications to manage web content. When exploited, it allows remote execution of malicious code on victims’ computers.



Leave a Comment