large image

Trusted Reviews is supported by its audience. If you purchase through links on our site, we may earn a commission. Learn more.

Here’s why you should be wary of Microsoft Word attachments right now

Digital security firm McAfee has discovered a “zero day” flaw in Microsoft’s Office software that leaves users vulnerable to damaging malware attacks.

In a blog post (via) over the weekend, McAfee revealed RTF files with Microsoft Word’s .doc extension name have been used to gain unauthuorised access to machines as far back as January 2017.

The firm said the exploit, which executes a malicious code from a remote server, affects all versions of Office, including Office 2016 for Windows 10.

Related: Office 2016 review

Worryingly, the vulnerability currently remains active, but Microsoft has pledged the bug will be nixed when the monthly security update rolls out on April 11.

Until then, McAfee advises users to use the Office Protected View, while warning against opening Office files from “untrusted locations”.

The damaging bug enables attackers to gain “full code execution” on the the affected computer, rendering the owner powerless.

In the blog post McAfee explains: “The exploit connects to a remote server (controlled by the attacker), downloads a file that contains HTML application content, and executes it as an .hta file. Because .hta is executable, the attacker gains full code execution on the victim’s machine. Thus, this is a logical bug, and gives the attackers the power to bypass any memory-based mitigations developed by Microsoft.

“The successful exploit closes the bait Word document, and pops up a fake one to show the victim. In the background, the malware has already been stealthily installed on the victim’s system.”

Take care out there folks, and be sure to pay close attention to those emails before opening attachments willy nilly.

How much do these attacks concern you? Share your thoughts in the comments below.

Why trust our journalism?

Founded in 2004, Trusted Reviews exists to give our readers thorough, unbiased and independent advice on what to buy.

Today, we have 9 million users a month around the world, and assess more than 1,000 products a year.

author icon

Editorial independence

Editorial independence means being able to give an unbiased verdict about a product or company, with the avoidance of conflicts of interest. To ensure this is possible, every member of the editorial staff follows a clear code of conduct.

author icon

Professional conduct

We also expect our journalists to follow clear ethical standards in their work. Our staff members must strive for honesty and accuracy in everything they do. We follow the IPSO Editors’ code of practice to underpin these standards.