Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Confirms Excel Zero-Day Attack

Posted by ryuzaki0 on from the 0day-warez-is-fun-to-say-though dept.

Guglio writes "Eweek has a story about a new, undocumented Excel flaw that is being used in a targeted attack against an unnamed business. The latest zero-day attack comes just two days after Patch Tuesday (coincidence?) and less than a month after a very similar, 'super, super targeted attack' against business interests overseas. The back-to-back zero-day attacks closely resemble each other and suggest that well-organized criminals are conducting corporate espionage using critical flaws purchased from underground hackers."

3 of 199 comments (clear)

  1. Re:HOW!?!!?! by tomstdenis · · Score: 0, Flamebait

    I realize that, but any half-way competent developer would be bounds checking everything they do. Oh wait... this is $BIGBUSINESS so managers dictate how long a program takes to write...

    I mean it's simple, before you copy or read data you make sure your destination is the right size. It helps not to write spaghetti code too I guess...

    Tom

    --
    Someday, I'll have a real sig.
  2. Re:It's part of Microsoft's plan by Millenniumman · · Score: 0, Flamebait

    Insightful? This is a completely unsubstantiated claim.

    --
    Stupidity is like nuclear power, it can be used for good or evil. And you don't want to get any on you.
  3. in other news.. by Intangion · · Score: 0, Flamebait

    they sky is blue!
    water is wet!

    these microsoft is being exploited again articles get kinda funny when you see one every few days
    and a critical one every 1-3 weeks
    cant even go a month without major exploits on windows

    its either a sign of completely lousy untrustable crap code, or that they are purposely leaving backdoors in there for some evil purpose ;) and hackers are getting better at finding them now

    *hugs ubuntu*