Main menu

Pages

Microsoft Office users experienced 8x more cyberattacks in Q2, according to report

File photo: A sign shows Microsoft offices in Cambridge, Massachusetts, USA, January 25, 2017. REUTERS/Brian Snyder

microsoft office According to recent data from a cybersecurity firm, users received 82% more attacks in the second quarter of 2022.

In the latest quarterly report, Kaspersky stated that older versions of applications in the Microsoft Office suite were the primary targets of attackers.

About 547,000 users said they were affected by these attacks.

“Older versions of applications continue to be a primary target for attackers, with vulnerabilities affecting a total of approximately 547,000 users last quarter. The number of users affected by the Microsoft MSHTML Remote Code Execution Vulnerability has surged eightfold,” states the report.

In information technology, Vulnerability “A vulnerability in an information system, system security procedures, internal controls, or implementation that can be exploited or triggered by a threat source.”

Popular brands and applications were named as affected software. These include Adobe Flash, Android, and Java.

Below is a table of vulnerability types and attacked users for Q2 2022.

Kaspersky highlighted that CVE-2021-40444, among other types of vulnerabilities, was exploited when various major organizations were also attacked, citing the company’s telemetry data.

These organizations belong to the following areas:

  • Research and Development
  • Energy and industry sector
  • Financial/medical technology
  • Telecommunications
  • that

The cybersecurity firm says the vulnerability was first reported in September 2021.

“Engine is a system component used by Microsoft Office applications to process web content. increase.

Alexander Kolesnikov, a malware analyst at Kaspersky, said he already expects more exploitation of this vulnerability because it is “very easy to use.”

“This vulnerability is so easy to use that we expect to see more exploits. Criminals create malicious documents and use social engineering techniques to trick victims into opening them,” Kolesnikov said. said.

“Microsoft Office applications then download and execute malicious scripts. To be safe, install vendor patches, use security solutions that can detect exploits of vulnerabilities, and keep your Staying aware of cyber threats is essential,” he added.

Recommendation

Kaspersky researchers list the following measures on how companies and organizations can prevent such attacks:

  • Give your SOC team access to the latest threat intelligence (TI). The Kaspersky Threat Intelligence Portal is the company’s single point of access for his TI, providing cyberattack data and insights Kaspersky has collected over the past 20 years. To enable businesses to defend effectively in these turbulent times, cybersecurity firms rely on independent, continuously updated, globally sourced information on ongoing cyberattacks and threats. Free access announced. Request access online.
  • Receive up-to-date and relevant information about threats to watch out for and TTPs used by attackers.
  • Enterprises are advised to use a security solution that offers a vulnerability management component, such as Automatic Exploit Prevention within Kaspersky Endpoint Security for business. This component monitors suspicious actions of applications and blocks execution of malicious files.
  • Detect and prevent attacks early, before they reach their goal, with solutions like Kaspersky Endpoint Detection and Response and Kaspersky Managed Detection and Response.

Comments