What to Know: There is an active zero-day vulnerability that affects all Windows OS (including Windows 10). Opening a Microsoft Word file from an untrusted source can compromise your entire system.
How it Works: When opened, the exploit code makes a connection to a remote server controlled by the attacker. A malicious HTML file is downloaded, disguised as a ".rtf file," and installs malware.
What to Do:
- Do not open or download Word files from any untrusted source
- Enable Office Protected View
- Do not enable macros
- Regularly backup your files
- Be conscious of opening and engaging with phishing emails and spam
If you have any questions or need any assistance, please contact AskIT@amherst.edu.