Since new forms of cybercrime are on the rise, traditional techniques seem to be shifting towards more clandestine that involve the exploitation of standard system tools and protocols, which are not always monitored. Security researchers at Cisco’s Talos threat research group have discovered one such attack campaign spreading malware-equipped Microsoft Word documents that perform code execution on the targeted device without requiring Macros enabled or memory corruption.

via MS Office Built-in Feature Allows Malware Execution Without Macros Enabled

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.