You Are Viewing

A Blog Post

URGENT: Potential business impact. Beware of Microsoft word documents in emails!

 

This is an alert to inform all Microsoft Office users of a new zero-day attack that installs malware onto a fully patched system running Microsoft Operating System via an Office vulnerability. We recommend refraining from sending or opening any Word documents via email. This type of phishing emails can come in different formats including Resumes, Invoices, Tracking numbers, demand notice, etc.

Microsoft Office has a feature called “Protected View” that is enabled by default; however, you should double check your settings to make sure that this feature is turned on. If you open a Word document and see this pop-up, it’s a pretty good indicator that something is wrong.

In addition to being highly suspicious of any Word document that arrives in an email, there are a few other things we’d recommend that you consider:

  • Consider sharing documents through your internal network file server instead of email.
  • Do not open or download any suspicious Word files that arrive in an e-mail, even if you know the sender until Microsoft releases a patch.
  • Since the attack does not work when a malicious document is viewed in Office Protected View feature, users are advised to enable this feature to view any Office documents.
  • Disabling Macros does not offer any protection, but yet users are advised to do so in an attempt to protect themselves against other attacks.
  • Always beware of phishing emails, spams, and clicking the malicious attachment.

The vulnerability is bypassing most mitigations, and we will push the Microsoft patch as soon as it is available.

Share
Ray Marmash
Ray Marmash
Ray has delivered business-driven technology solutions to growing companies for more than 18 years. As the founding President of ARX Networks, Ray has re-directed the company’s focus toward a re-vamped IT Support and Operations Procedures, as well as setup Quality Assurance Processes to meet the changing requirements within the outsourced IT industry.
Life Sciences

Stethoscope2

We have worked with medical device, biotech, and healthcare companies helping them to manage R&D environments, security compliance (including HIPPA), and onsite labs. 

 

×
Technology

Information-Technology-Graphic

ARX has experience providing customized IT infrastructure and outsourcing solutions to technology related organizations. 

 

×
Legal Industry

 

Law firms have specific challenges that we know how to address.

×
Financial Services

finance-assignment-help

Financial companies need to maintain internal and external security protocols. We provide:

×
Professional Services

 

Our experience in supporting professional services includes: 

×
Non-Profits

 

 

You can’t afford unplanned network crashes – a stable computer network, trusted IT support team, and planned IT budget is critical to your organization. 

×
Help Desk Services

help desk

Remote support for business critical problems  

×
Managed IT Projects

 

IPED_project-management

As your organization evolves to stay relevant in the changing business world, you will need to modify and adopt new IT technologies to support it. When your organization needs IT consulting guidance and experienced engineers for IT project management and implementation, ARX can help.

We Provide:

×
Backup & Risk Mitigation

Backup (2)

×
Hosted Cloud Solutions

 

Hosted cloud solutions1 (2)

×
VoIP Implementation

 

voip (2)

 

×
Procurement Management

 

computer-peripherals

×
Network Monitoring

Network picture

ARX Networks Monitoring detects and avoids performance events before they impact your business. We are constantly scanning, troubleshooting, and preventing incursions. Our tools include: firewall, VPN, and intrusion prevention systems.

ARX works to prevent spam, viruses, phishing, and denial of service (DoS) attacks on your network.  

 

×
On-Site Response

Capture

We can be onsite when you or your equipment need us.

While a technician is on their way we will be working remotely to get you back up and running.

×
Support Flexibility

 

time and calendar

We will provide the support that you need anytime and anywhere.

Remote and onsite hours can be tailored to support your company and employees.

Is it electronic? Ask us to manage it.

×
Strategic Approach

exit_22We bring a complete overview to all of your IT services, and work to provide the most efficient and economical strategy for current operations and future growth. 

×
Scalable Solutions

scalable

We work with you to help minimize upfront costs, hassles, and growing pains.

Infrastructure overload, clutter, and nuisances are minimized when we prepare your services for expansion.

The hardware and software that we install will grow with your company.

×