Currently there is a new zero-day attack targeting all Microsoft Office users. The malware runs on fully patched systems running Microsoft’s operating system via an Office vulnerability.
Expected patches and fix:
The zero-day attack disclosed affects all Microsoft Windows including Windows 10 and MS Office versions. Microsoft confirmed the vulnerability and we can expect a patch soon.
Stay safe and proactive:
- We recommend that you DO NOT open unknown or unexpected word document attachments received via Email.
- The malware cannot bypass Office Protected View which is enabled by default. You may check if you have protected view enabled by performing the steps highlighted here.
- Backup your systems regularly.