A new hacking campaign aims to use old vulnerabilities in Microsoft Office software to create a backdoor into Windows systems to spy and steal files. Dubbed Felixroot, the malware is delivered to individuals in Ukraine using a weaponised phishing email claiming to contain seminar information on environmental protection, indicating that the selected victims are likely to be highly targeted.
Liron Barak, CEO and Co-founder at BitDam:
“Logical exploits like CVE-2017-0199 and CVE-2017-11882 have become increasingly popular in recent months. Compared to macro attacks, which require user interaction, these types of vulnerabilities allow hackers to launch highly targeted attacks with very little effort.
“Even though organisations continue to invest in and implement employee security training to ensure they don’t fall victim of cyberattacks, people keep clicking on malicious files and links. The fact that “innocent” files continue to penetrate organisations and open the door for data breaches, among other cyber threats, is a symptom of a deeper problem. Attackers are stepping up their game by using manipulations and technical tricks that allow them to bypass security solutions, but they’re still using an old weapon.”