reveal an attack using Microsoft Office that can affect the Mac
Patrick Wardle, a security researcher today published an exploit that using Microsoft Office could put the security of a Mac at risk. The bug used is fixed now, but it is still an interesting case and, above all, a reminder of the importance of keeping our devices up to date.
An unlikely but interesting attack
As published by Motherboard, the attack focuses, once again, in macros that can be embedded in Office documents. Until now this technique was mainly present on Windows, but for a certain period of time it has also been present on Mac.
During the security conference Black Hat Wardle has revealed an attack whereby using an outdated file format could force Microsoft Office to run a macro without alerting the user. Then, thanks to the use of the $ symbol, the researcher managed to escape from the Office sandbox and could execute code like in the video that we see below where the Calculator app is opened.
From here the attack requires the user to log into the Mac on two separate occasions, since the login triggers the different stages of the attack, which, on the other hand, makes it quite ineffective.
The researcher contacted Microsoft and Apple so they could fix this bug, a fix that arrived in macOS 10.15.3. One more episode that reminds us that updates to our devices go way beyond new features to resolve errors that may otherwise put our security at risk.
- Hackers bypass Microsoft two-factor authentication
- Last Man Sitting, a shooter in which you will have to knock down your opponents from an office chair
- Microsoft unveils Fallout 76 Xbox One bundle and new Elite controller
- Microsoft files patent for Xbox One controller with braille
- Microsoft is responding to Sony’s cross-play ruling
- Epic Games decrees truce with Microsoft and its policies
- InXile acquired by Microsoft – interview
- Platinum says it shares Scalebound blame with Microsoft
- Microsoft is expanding the world of Flight Simulator with Japanese locations
- Microsoft Flight Simulator: Official PC System Requirements Revealed
- Turtle Rock Studios could be the new target for Microsoft acquisitions
- Microsoft unveils an Xbox One S Fortnite bundle
- Xbox: In addition to Redfall, Microsoft on another unpublished Bethesda license?
- Microsoft promotes Game Jam 100% online using the Teams platform
- Microsoft announces streaming service Project xCloud
- Microsoft allows Double Fine to remain experimental, says founder
- Xbox Series X, Xbox Series S, Halo Infinite and Fable among the topics of Microsoft’s May presentation?
- With video, Microsoft is helping parents about to buy a console
- Sony Worries Gamers Will Switch To Xbox If Microsoft Owns Call Of Duty
- Microsoft’s Game of Thrones teaser revealed: Xbox One special
- You can buy Office 2019/2016 and Windows 10 now at a great price – let’s tell you how!
- Mac Studio vs Mac Pro vs Mac mini: Apple's debauchery of power
- Rumor: Microsoft is buying Obsidian
- Popular Jury: Xbox One X and Microsoft’s E3 conference – the word is yours
- E3 2017: Microsoft brings “true 4K” to consoles – editorial
- We already know when N’Zoth’s attack will start in World of Warcraft
- Rumors claim that Microsoft would be interested in acquiring Electronic Arts
- The next time you can buy a Polish studio is from Microsoft
- Attack on Titan 2 video game shows its collector’s edition along with two trailers
- Despite the symbol: the public prosecutor’s office is not investigating Bundesfighter 2 Turbo
- Oniria Crimes comes to Mac and Linux
- Xbox Series X is approaching and Microsoft is teasing fans with a new mysterious teaser
- Sonic: The Movie exceeds Detective Pikachu’s opening box office
- Microsoft Flight Simulator surpasses 2 million players
- PAC-MAN and the ghostly aperitif attack
- In principle, Microsoft will be making new consoles for us for a long time to come
- Crackdown 3 release date, Forza Horizon 4 and Sea of Thieves DLC and more from Microsoft’s X018
- Microsoft wants to shorten the charging times for the Game Pass
- Sony, Microsoft and Nintendo unite against tariffs imposed by Trump management
- PS5 and Xbox Series X postponed? Sony and Microsoft have not yet made a decision according to Jason Schreier
- Xbox Series X | Microsoft details the technology inside the new console
- The Microsoft Flight Simulator Pilot Academy helps us learn more about flying
- Attack on Titan Tactics will bring a different approach to the universe of titans
- Microsoft wants to give its studios the time to create good games
- Cyberpunk 2077 will run in 4K on Xbox One X according to Microsoft Store
- There is nothing more reassuring today than the combination of Microsoft Flight Simulator and Hungarian poems
- At Gamescom, Microsoft chooses not to hit – editorial
- Xbox Game Pass is the great success of Microsoft: numbers and statistics of a service to be framed
- Microsoft denounces the activities of an Austrian company
- Attack on Titan 2 shows extensive new trailer
- AMD will give details of the “new generation” of games at E3 and Microsoft reacts
- Microsoft’s 2017 – article
- For now, Skywalker’s age is performing better at the box office than the previous section
- Digital Foundry: Microsoft Xbox One X – Test
- Last of Us and Uncharted designer joins Microsoft’s The Initiative
- Sony and Microsoft announce partnership for cloud games and semiconductors
- Rumor: Microsoft is working on two next-gen consoles for 2020
- Microsoft says it will continue to release more consoles after Xbox Series X / S
- These are the most anticipated 2020 films, according to a ticket office
- Today no To the editorial office, but …
- Now a huge gap has appeared in Microsoft Flight Simulator
- ” Sony can’t have what Microsoft owns ”
- Microsoft, Ubisoft, Sony and NFT… The business news of the week
- Hideki Kamiya calls on Microsoft to re-sell Forza Horizon 1 and 2
- Attack on Titan manga will end next year
- Microsoft has found a way to limit ransomware
- With Intego's Bargain Antivirus Suite, Your Mac Will Be Safe From Malware
- Snowy landscapes are also eye-catching in Microsoft Flight Simulator
- Xbox Inside, Microsoft’s new streaming program
- Microsoft is throwing the year off with Games With Gold
- New Attack on Titan 2 trailer starring Armin and Mikasa
- Black Friday: Microsoft promotes the annual Game Pass for only R $ 199
- In Microsoft Flight Simulator, we also need to pay close attention to proper navigation
- Xbox Series X and S break all sales records, Microsoft is enjoying it
- Microsoft Flight Simulator came in so much that the developers got another project from Microsoft
- Microsoft mixed reality games at E3?
- Xbox Series X|S remains the fastest-selling Xbox in Microsoft history
- BioWare office can be viewed online
- Question Hour – You can ask DoggyAndit and the head coach of Mac Budapest about hockey
- Microsoft Studios is now called Xbox Game Studios
- Microsoft spent more than $ 1.4 billion on indie games
- Hackers Linked to Attack on CD Projekt Red Release Gwent Source Code and Auction The Witcher 3
- After Microsoft, Sony can now buy a huge video game publisher
- The funniest attack of the Green Lanterns could even take place in an adult film
- Microsoft Flight Simulator will soon become an even closer experience
- SteamVR for Mac abandoned by Valve
- You Can Now Easily Turn An Old Mac Into A Chromebook, But You Probably Shouldn't
- Fable 4 still at the center of the rumors: has Microsoft just thrown a clue?
- Microsoft is far from done with Windows 11
- Microsoft will help launch training for future game makers
- Netflix partners with Microsoft and puts linear TV at risk
- Now you can have your legal Windows 10 and Office even cheaper!
- Rumor: Microsoft is bringing Game Pass to Switch
- Microsoft's takeover of Activision is moving forward at the FTC, Sony's Bungie is now finalized
- Attack on Titan has new Mikasa and Eren figures thanks to Kotobukiya
- Xbox Series X: Microsoft reveals the console startup screen?
- After a first advertising agreement, is Microsoft in the process of buying Netflix?
- The story behind Sony’s viral video that laughed at Microsoft’s policy on sharing games
- Microsoft Beam competes with Twitch and YouTube Gaming
- Microsoft and Sony take their cue from the Netflix model – editorial
