Thursday, November 5, 21:45
Home inet Zyklon Malware: Targets Microsoft Office and steals passwords

Zyklon Malware: Targets Microsoft Office and steals passwords

The unpatched computers that run the Microsoft productivity suite Office are targeting a wave of Zyklon-based malware attacks, which can steal passwords and wallet data.

FireEye security company warns that these attacks involve three different Office vulnerabilities, two of which have already been corrected by the Office Microsoft.

The first bug is a .NET framework bug that is described in detail in CVE-2017-8759 and which Microsoft corrected in October. The second is a remote code execution bug in the Microsoft Equation Editor (CVE-2017-11882) and was repaired in November, while the third is a fairly controversial issue in Dynamic Data Exchange (DDE).Zyklon

Microsoft has pointed out that this third error is not a security vulnerability and does not require a patch, but the company published information on how to stay protected when using this feature.

FireEye reports that attacks are transmitted via emails containing corrupted DOC files that attempt to exploit these vulnerabilities. As soon as it starts, the document attacks the server, allowing attackers to use all of Zyklon's malware, including password-crashed storages stored in browsers, FTP connections, gaming keys recovery, and collection licenses for software developed by Adobe and Microsoft.

Additionally, malware can capture the clipboard, steal Bitcoin data, and can also create a SOCKS5 server on the infected computer.

Zyklon was first identified at the beginning of 2016, but FireEye reports that most of these attacks are now targeting three different industries, namely telecommunications, insurance and financial services.


Please enter your comment!
Please enter your name here

In a world without fences and walls, who needs Gates and Windows


Researchers have discovered 75.000 files on second-hand USB drives

Security researchers have discovered 75.000 "extremely sensitive" documents on used USB devices, which were auctioned off on eBay.

How to restart a Google TV device

It is not uncommon for devices to stop working as they should. In many of these situations, a simple ...

Chesapeake Medical Center: 23.000 patient information reports

A data breach that affected Chesapeake Medical Center in Virginia, USA, resulted in the exposure of sensitive information about ...

An unknown person transferred $ 1.000.000 worth of bitcoin from a bitcoin wallet!

About $ 1 billion in bitcoin has been transferred from a mysterious wallet that has been in obscurity since 2015. The transfer of about ...

The National Guard cybersecurity team is assisting the UVM Medical Center with the hack

The cyber security unit of the Vermont National Guard will help the University of Vermont Medical Center put in ...

Expenditure on smart city technologies will increase by 22,7% by 2025

Research firm Frost & Sullivan has released a new report that analyzes global spending on smart city technologies that will ...

23,600 compromised databases leaked to the internet

More than 23.000 compromised databases are available on hacking forums and Telegram channels, with security experts saying it is ...

Watch Dogs: Legion was hacked and the source code was released on the internet

Watch Dogs: Legion is a Ubisoft game set recently released in London and has to do with hacking ....

How to disable Pop-up Blocker in Chrome

The appearance of pop-ups while browsing the web can be annoying, but sometimes you want to see pop-ups ....

Russian hacker arrested by Russian authorities for targeting locals

Russian authorities arrested a malware creator in late September, causing surprise as Russia is a country that is usually lenient ...