These Tips From Malware Analysts Can Help Companies Prevent Attacks Through Microsoft Office Vulnerabilities
JAKARTA - Kaspersky's quarterly report found that vulnerabilities to Microsoft Office increased by 82 percent in Q2 2022. According to Kaspersky malware analyst Alexander Kolesnikov, the vulnerability is easy enough to use that he predicts an increase in exploits.
"Cybercriminals create malicious documents and convince their victims to open them through social engineering techniques. Microsoft Office applications then download and run malicious scripts," he added.
According to Kolesnikov, in order to stay safe, it is imperative to install vendor patches, use security solutions capable of detecting exploited vulnerabilities, and keep employees alert to modern cyberthreats.
Moreover, to prevent attacks through Microsoft Office vulnerabilities, Kaspersky researchers recommend businesses implement the following measures:
Give your SOC (Security operations center) team access to the latest threat intelligence (IT). The Kaspersky Threat Intelligence Portal is a single access point for enterprise IT, providing the cyberattack data and insights that Kaspersky has collected over the last 20 years. Receive relevant and up-to-date information about threats to watch out for and TTPs used by attackers. Companies are advised to use a security solution that provides a vulnerability management component. For example, companies can use Automatic Exploitation Prevention in Kaspersky Endpoint Security for business.