Attack code that targets a recently patched vulnerability in Microsoft Corp.’s Office suite has gone public, a security company said today as it urged users to update immediately. The exploit, which ...

In an unusual development, the creators of tools used to mass-produce malicious Microsoft Office documents have completely scrapped a range of exploits they've been using, some for years, and replaced ...

Over the past few months, an Office vulnerability has become one of the most popular and efficient ways of delivering malware to vulnerable computers. The vulnerability — tracked as CVE-2017-0199 — ...

Microsoft has issued a warning Friday night about an active spam campaign targeting European languages that is utilizing an exploit that could infect users simply by opening the attached document. In ...

At Black Hat 2020, Patrick Wardle disclosed an exploit chain that bypasses Microsoft’s malicious macros protections to infect MacOS users. A new “zero-click” MacOS exploit chain could allow attackers ...

Being top choice as an attack vector is likely not a contest any platform wants to win. Unfortunately for Microsoft, Office will not only continue to be the attackers’ vector of choice but will also ...

Tacitly acknowledging that it cannot completely secure its Office suite against attackers, Microsoft Corp. yesterday promoted a last-ditch defense that lets administrators block users from opening ...

The most popular exploits in 2017 targeted Microsoft Office and Windows, report researchers at AlienVault, who say the most common flaws remain exploited for a long period of time. Each year, the ...

A now-fixed exploit in the macOS version of Microsoft Office may have allowed attackers to hack a Mac user just by getting them to open a document. The exploit was developed by Jamf security engineer ...

Attack code takes advantage of one of two flaws in the Office suite fixed by Microsoft in its MS08-016 security update Attack code that targets a recently patched vulnerability in Microsoft’s Office ...