What to Know: There is an active zero-day vulnerability that affects all Windows OS (including Windows 10). Opening a Microsoft Word file from an untrusted source can compromise your entire system.

How it Works: When opened, the exploit code makes a connection to a remote server controlled by the attacker. A malicious HTML file is downloaded, disguised as a ".rtf file," and installs malware.

What to Do: 

  • Do not open or download Word files from any untrusted source
  • Enable Office Protected View
  • Do not enable macros
  • Regularly backup your files
  • Be conscious of opening and engaging with phishing emails and spam

If you have any questions or need any assistance, please contact AskIT@amherst.edu.