Microsoft
Here are some of the key reasons why you would want to run Unified Access Gateway with DirectAccess.
Rigged Word docs exploit 2008 bug, say researchers
Chinese hackers hijacking PCs not patched with December fix
April 23, 2009 12:00 PM ETComputerworld - Attackers, probably based in China, are exploiting a December bug in Microsoft Word to hijack Windows PCs, Vietnamese security researchers warned today.
According to Nguyen Minh Duc, manager of Hanoi-based Bach Khoa Internetwork Security's (BKIS) application security department, rigged Word documents have begun to circulate as e-mail attachments. The malformed .doc files exploit one of the eight Word flaws fixed by Microsoft in December 2008 as part of the company's biggest patch batch in five years.
The holes in Word 2000, 2003 and 2007 for Windows, and Word 2004 and 2008 for the Mac, were plugged by the MS08-072 update.
When a malicious Word document is opened, the attack code executes successfully on machines with an unpatched copy of Word 2003. "If other Word versions are used in the computer, they are only crashed without any malicious code execution," Nguyen said in an e-mail. The malware drops a Trojan keylogger on the compromised computer to steal information, such as usernames and passwords.
BKIS suspected Chinese hackers are behind the exploit. "It is connected to a server with the domain name '8800.org' registered in China to receive commands," Nguyen said. "In the malicious e-mail, we also found charset="gb2312, [which] is Chinese charset."
Attacks exploiting vulnerabilities in Microsoft's Office applications are common. In February, Microsoft's security team acknowledged hackers were targeting an unpatched bug in Excel, and then earlier this month issued a similar warning about PowerPoint, the suite's presentation maker.
Microsoft patched the Excel bug last week as part of its regularly scheduled monthly security update.
Support for Word 2003, the version BKIS said is vulnerable to the new attack, shifted into what's called "extended" mode last week. Microsoft will continue to provide security updates for the application until April 8, 2014, but will no longer offer free nonsecurity fixes.
Read more about security in Computerworld's Security Knowledge Center.
Microsoft
Additional Resources
Microsoft
Review how one energy firm tightened protection and simplified IT work using business-ready security solutions.
Sybase
In this white paper, IDC analyzes the role of next-generation mobile enterprise platforms as organizations seek a more strategic deployment of mobile solutions.
Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase.
Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase.
White Papers & Webcasts
Death to PST Files
Download Now
The Tangled Web: Silent Threats & Invisible Enemies
Download Now
Tape Killed the IT Guy
Watch Now
Forrester Consulting Mobility Study: Taking Control of Enterprise Mobile Device Diversity
Download Now
BRM: What You Can Do To Reduce Risk In Challenging Times
Watch this webcast now!
What IT Must Do to Support Employee-Owned BlackBerry, iPhone and Android Mobile Devices
Download Now
Web 2.0, Social Media and the Dark Web - A Web Criminals Paradise?
In this discussion, learn about the challenges of protecting your users from the potentially unsafe content hidden in the "Dark Web".
eGuide: Enterprise Security
Smart Security Strategies for 2010. Read now!
Disaster Recovery 2008: Reduced Costs and Improved Performance
How long can your Enterprise afford to be without your data? With an accelerated disaster recovery program, you never have to answer this...
Computerworld Reports
Sign up to receive updates on the latest Security resources
