Hi Guys,
Cybercriminals are actively exploiting a ‘One-Click’ Zero-Day vulnerability in all versions of Microsoft Office. The vulnerability, called ‘Follina,’ mainly targets users in Russia and Tibet, but in reality, they can attack anyone in the world. All users of Microsoft Office are at serious risk here. Here is everything you need to know and also how to protect yourself.
How does the attack work:
- The victim receives a specially crafted Microsoft Office document.
- When the victim opens the file, a remote attacker takes complete control of the victim’s system
- The attacker can then remotely install programs, view, change, or delete data
- This is a full system takeover attack.
How to protect yourself:
There is no fix in place for this vulnerability, but Microsoft has released details of a workaround solution that will keep you safe until they can figure it out. If you are a user of Microsoft Office, follow these steps. Please be extra CAREFUL when you are typing these commands, as if you make a mistake, you can mess up your computer.
- Open Command Prompt while logged in as a System administrator.
- You first need to backup up your system’s registry. Type this command and press ENTER:
reg export HKEY_CLASSES_ROOT\ms-msdt filename
- Now that you have backed up, you can type this command and press ENTER:
reg delete HKEY_CLASSES_ROOT\ms-msdt /f
Another day, another massive cyber attack. Today, Microsoft is under attack. But don’t worry, we have your back 🙂
Please pass this message far and wide, and also, if you need any help, just let us know. We are here to help and support you.
All the best,
Max Roberts,
Incognito Privay Care team