Microsoft on Monday patched a severe code-execution vulnerability in the malware protection engine that is used in almost every recent version of Windows (7, 8, 8.1, 10, and Server 2016), just three days after it came to its attention. Notably, Windows Defender is installed by default on all consumer-oriented Windows PCs.
WikiLeaks has published what it says is another batch of secret hacking manuals belonging to the US Central Intelligence Agency as part of its Vault7 series of leaks. The site is billing Vault7 as the largest publication of intelligence documents ever.
WikiLeaks will be sharing alleged CIA hacking techniques with major technology companies such as Apple and Google to allow them to develop fixes for vulnerabilities in their phones and other electronic devices, according to Julian Assange.
“If an attacker has a foothold in your air-gapped system, the malware still can send the data out to the attacker,” says Ben-Gurion researcher Mordechai Guri, who has spent years focusing on finding techniques for ferreting data out of isolated computer systems.
This malicious Word file marks the first time someone has attempted to compromise a Mac via macro abuse. While the malware isn’t particularly advance, there is no denying that macros are still highly effective when it comes to compromising a machine. Mac users should probably be extra vigilant when it comes to Word files from now on.