Slashdot Mirror

← Back to Stories (view on slashdot.org)

Attackers Use Microsoft Office To Push BlackEnergy Malware (csoonline.com)

Posted by timothy on Thursday January 28, 2016 @11:49AM from the but-most-office-machines-are-up-to-date dept.

itwbennett writes: Researchers at SentinelOne reverse engineered the latest variant of the BlackEnergy 3 rootkit (the same malware used in recent attacks against Ukraine's critical infrastructure) and found indicators that suggest it is being used by insiders and that it is the byproduct of a nation-sponsored campaign. 'BlackEnergy 3 exploits an Office 2013 vulnerability that was patched some time ago, so it only works if the target machine isn't patched or an employee (either deliberately or after being tricked into it) executes the malicious Excel document,' writes CSO's Steve Ragan.

3 of 51 comments (clear)

Min score:

Reason:

Sort:

To all the idiots ... by Billly+Gates · 2016-01-28 11:53 · Score: 2

... Who turn off Windows update. All I can say is told you so.

--
http://saveie6.com/
1. Re:To all the idiots ... by Gravis+Zero · 2016-01-28 12:13 · Score: 4, Insightful
  
  Turning off Windows Update puts you are grave risk of malware infection. Turning it on makes it a certainty. The only winning move is not to play. Use Linux. :)
  
  --
  Anons need not reply. Questions end with a question mark.
2. Re:To all the idiots ... by rtb61 · 2016-01-28 13:14 · Score: 3, Insightful
  
  I assume you meant https://www.libreoffice.org/ Libre Office rather than Linux although subtlety in there no M$ Office on Linux of course, although in this case you could call it M$ 'open' Orifice, eww, that's bad ;).
  
  --
  Chaos - everything, everywhere, everywhen