Wednesday , 25 April 2018
Home >> S >> Security >> Get Windows and Office patched – though watch out for creepy-crawlies

Get Windows and Office patched – though watch out for creepy-crawlies

Those of us who have to keep Windows 10 operative have strike nonetheless another severe course. This month’s rags haven’t been pretty. In fact, if your admin set a WSUS or SCCM refurbish servers to automatically approve Windows 10 updates, we competence have had to understanding with oceans of blue screens.

Right now, a biggest hazard is not KRACK – Computerworld‘s Gregg Keizer has an overview here and a Krackattacks.com site has a latest details; it hasn’t (yet) started infecting normal Windows users. The large hazard now is from that Wacky Wascal BadRabbit, that started with a feign Flash refurbish on a Russian site and an ancient DDEAUTO margin feat in Word (and Excel and Outlook and OneNote) and is being used to lift Locky and other ransomware.

The DDEAUTO feat isn’t a bug, according to Microsoft, since we have to click by 3 warning dialogs before it’ll bite. (The initial of that is “Enable Editing.” Sound familiar?) See Catalin Cimpanu’s overview in Bleepingcomputer, and a drill-down on a DDE-born Hancitor malware from Brad Duncan on a SANS Internet Storm Center.

The good news is that there are stairs we can take to manually retard any of those intensity nasties:

close
==[ Click Here 1X ] [ Close ]==