New “zero day” vulnerabilities were discovered microsoft-office And more specifically even Microsoft wordBy the “Naosec” cyber security team, Allows Hackers Remote access Computer In order to steal the user’s personal data.

The vulnerability that researcher Kevin Beaumont called “Follina” seems to be affecting different versions of the Microsoft Office suite. This includes versions from 2013 to 2021 and more Office ProPlus ი Office 365.

What is this Word Error?

The error specifically allows the execution of commands PowerShell Through MSDT, through the software support tool Microsoft. All this, thanks a A simple Word document.

Beaumont noted in the post that “the document uses Microsoft’s remote text editing template function to retrieve HTML from a remote web server” and also uses the msmsdt MSProtocol URI schema to load code and run the above. Console interface. Without being detected by Windows Defender And even working with macros is disabled.

However Microsoft named it a few hours ago as Zero Day Vulnerability. According to Beaumont, the insecurity was in the office suite for several weeks. Hackers seem to use Word documents to get victims’ attention.

Including showing the victim of sexual harassment or even requesting an interview for the Russian media. also, Remote access is granted upon opening the document And in some cases even Its a preview in File Explorer.

Two measures to prevent a hacker from controlling a computer with a new Word error

Microsoft, which initially did not consider this vulnerability as such, is already looking for a solution, so it is likely that in the coming days the Office suite and even Windows Get a new security update to resolve this issue.

Meanwhile, users can get it Certain dimensions To completely prevent hackers from infiltrating your computer:

– It is one of such events Avoid opening or downloading unknown documents. For example, files that come E-mail. Remember that vulnerabilities are loaded into Word’s remote template. Therefore, and as mentioned above, it is very difficult for Microsoft Defender or anyone else Software A similar antivirus detects the file as a threat.

– It is possible, on the other hand, Disable certain features and processes of Microsoft Word For example, prevent Office applications from creating themes or manually deleting an “msmsdt” file through Windows Editor. This will prevent Microsoft from running this process.

How to prevent document loss if Microsoft Word closes

First, you need to run the program in the usual way.

Then go Options page That Office should adjust the behavior of the text editor. This is achieved by simply going to the menu File, archive Select the main interface of Word and the input options that appear on the screen.

Enter in the left panel of the window ᲒSave.

The first thing that needs to change is Automatic time saving. This way, if there is a sudden error with the computer or the program, The data will not be lost because the file has just been saved.

But that is not all, but at the same time Disk path can be specified to store backup files.

This will allow you to find the appropriate temporary files Immediately In case the computer or Word closes suddenly.

Keep reading