Wednesday, June 3, 06:40
Home security Office for Mac 2011: Dangerous SYLK file format-Beware!

Office for Mac 2011: Dangerous SYLK file format-Beware!

Office for MacYou're still running it Microsoft Office for Mac 2011 at computer your; If so, there are at least two reasons why you should not.

The first reason is that Microsoft does not support this version from 2017. This means that bug fixes are no longer being released. Therefore, anyone vulnerability may appear, not treated.

The second reason became known recently. The US CERT Coordination Center (CERT / CC) conducted a survey that showed him dangerous way with which Office for Mac 2011 handles one forgotten macros format (XML), when integrated into SYLK (SYMBOL LINK), a Microsoft file format used for sharing data (mainly spreadsheets).

Many users may not have heard of either format. After all, there are many forgotten formats from the past, but they are still supported today. software. The hackers often take advantage of their ignorance users and use these formats to attack.

Last year, some Dutch researchers reported that the SYLK .slk file format could be used for Mac infection computers.

Despite the researchers' warning, the Office did not send alerts security users when they were trying to open a file that had this format.

In addition, in Office for Mac 2011, all macros are disabled by default. This may allow one to go unnoticed attack which takes advantage of XML format within archives .slk.

One solution would be to enable all macros or deactivate after notification is displayed, which stops running macros automatically, but informs the user every time he has to intervene.

Many would think that automatically disabling all macros (without alerting the user) would be the safest solution. However, in this case, turning off macros with a notification is the only option warns of a malicious XML / SYLK file.


Please enter your comment!
Please enter your name here

Absent Mia
Absent Mia
Being your self, in a world that constantly tries to change you, is your greatest achievement


Samsung Access: Samsung's new service for new Galaxy devices!

Samsung has launched a new subscription service for upgrades, starting with the Galaxy S20 series. The new service, named Samsung ...

Microsoft: The tools that will now be available to everyone!

Microsoft now has the "Virtual Assistant Accelerator" and "Bot Framework Composer" tools for its entire user base. Developers can ...

Sony: Cancel PS5 event due to Floyd case!

The event that Sony had planned for the PS5 on June 4 was postponed indefinitely, due to the deplorable situation that prevails ...

Cisco warns: These Nexus switches have been hit by a serious security flaw

Cisco has warned customers with Nexus switches running NX-OS software to install updates to address a serious flaw ...

Windows 10 May 2020 Update: Get Windows 10 for € 9.09

As we all know, Windows 10 May 2020 Update has been released. It is safer, more reliable and more efficient than ever. It is certain that with ...

Anonymous's hack includes data from previous leaks!

As protests over the death of George Floyd in Minneapolis have spread across the United States, cyberattacks have targeted police ...

Critical Exim errors have been fixed, but many servers are still at risk

The update of Exim mail servers is not fast enough and the members of the Russian hacker Sandworm team are actively exploiting three critical ...

New Cisco vulnerability that concerns you!

A new critical Cisco vulnerability has been identified that concerns you: For those who don't know, Cisco recently announced that some of the servers ...

Antifa tweets from extreme rightists call for violence!

The "Antifa tweets" that flooded Twitter and promoted violence, actually came from a well-known far-right group! The information came in ...

Apple introduces the new USB-C Diagnostic Tool

Apple introduces the new USB-C Diagnostic Tool. See the new features: Apple finally brings the new internal USB-C Diagnostic Tool, ...