On May 31st, Microsoft announced that they were undergoing a Zero-Day Attack.
The “Follina” vulnerability in the Microsoft Support Diagnostic tools affects all supported windows, exposed through crafted Office documents through email attachments. Researchers have stated that the following flaw has been exploited for a month now in mainly India and Russia.
The flaw or freshly discovered software exposure is used in Phishing attacks to execute malicious commands by simply hoaxing users into believing Microsoft is instructing them to update their security or install patches.
What happens next?
- Threat actors will send an email with a docx (word) or .rtf (Rich Text Format) attachment. Then, the user opens an email attachment, which contains the exploit.
- Once this happens, it could allow the threat actor to elevate privilege or laterally move within the environment.
- This has only been noticed on word .docx (word) or .rtf (Rich Text Format) email attachments. However, this can be possible with Excel or any other office format.
Microsoft experienced a similar Zero-day attack back in 2021, resulting in Cyber Criminals using four security vulnerabilities to access private data from an organization. The “Follina” vulnerability is not as severe as this one, but Microsoft has instructed that the following flaw can delete data and create new accounts.
We Take Our Vitamins
We pride ourselves on maintaining a healthy work-life balance and showing people we are not the stereotypical I.T GUY. Splitsville bowling alley had first-hand experience of not only the “BEST” bowling teams but the “LOUDEST” bowling teams in the GTA. However, none of us stood a chance, as Wayne’s Team wiped us all off the board !!!
As you can tell we have Stephanies team having a blast. In the picture from left to right, we got Eugene, Manchula, Luv, Stephanie and Klea.