“bob综合体育平台”Office惊现零日漏洞 黑客可利用Word文档安装恶意软件

onlinebankingcustomersaroundthe worldshouldbeonthelookoutforscamemailsthatallowhackerstostealyourpasswords-Andyourmoney .黑客phishingemailswhichclaimtobefromreputablefinancialorganisationscontainhiddensoftware-designedtoexploitanewlydiscoveredflaw soff 虽然不是来自可靠性高的金融机构，但隐藏着微软公司Word新发现的利用脆弱性的软件。documentsopenedwiththewordprocessingsoftwaremaytrickusersintodownloadingcodethatallowscybercriminalstoinfecttheircomputerandca .这份Word文件不会愚弄用户iTunes代码，网络罪犯可以利用这些代码感染用户的电脑，获取银行指定信息。cybersecurityfirmproofpointwarnedthattheexploitwasbeingusedtospreadthetrojansoftware-calleddridex .网络安全公司proofpoint在前面dridexhaspreviouslybeenusedtostealonlinebankingpasswordsglobally， resultinginthetheftofhundredsofmillionsofdollarsworldwide duringanoutbreakofthevirusin 2015， theuswasmostheavilyaffectedaccordingtocomputersecurityfirmsymantec .根据计算机安全公司Symantec.2015年thiswasfollowedbyjapanandd withsignificantnumbersofinfectionsalsoseenintheuk，Canada，Australia，andanumber thelatestemailcampaignstartedinaustralia， butexpertsarewarningthiscouldquicklyspreadtotherestoftheworld .这次通过电子邮件感染病毒的事件始于澳大利亚。

theexploittargetsapreviouslyundiscoveredflaw-knowninsecuritycirclesasazero-day vulnerability-in the software .针对此漏洞的thisalle codeintothebodyofadocument-inthiscasefakertffiles (rich text format ) whichareactuallydisguisedhtmlcode .黑客利用这一漏洞，恶意代码这使得RTF格式的文件成为基本变形的html代码。

本文来源：bob综合体育平台-www.thehappypetworld.com