Support for LAist comes from
Local and national news, NPR, things to do, food recommendations and guides to Los Angeles, Orange County and the Inland Empire
Stay Connected
Listen

Share This

KPCC Archive

Microsoft warns that emails with RTF files attached can let hackers take over your computer

Congress has cut federal funding for public media — a $3.4 million loss for LAist. We count on readers like you to protect our nonprofit newsroom. Become a monthly member and sustain local journalism.

Microsoft released an emergency security alert noting a vulnerability in Microsoft Word that would allow hackers to take over users' computers. Their way in: RTF files, a widely used word-processing format. It can even affect users when the files are seen in preview mode, such as through Microsoft Outlook.

According to Microsoft's Monday advisory, the attacks using this exploit are targeting users of Microsoft Word 2010, but the vulnerability exists in other versions of Word. The attacks also affect Outlook users who have Word set as their email viewer, which is the default in Outlook 2007, 2010 and 2013.

The way it works is that specially formatted RTF files have code in them that corrupts your computer's system memory, then allowing the hackers to execute their own code.

Hackers can exploit this vulnerability either through email or a Web-based attack, according to Microsoft. In the Web-based scenario, a site could contain one of the specially formatted RTF files.

Support for LAist comes from

As Microsoft notes, "compromised websites and websites that accept or host user-provided content or advertisements could contain specially crafted content that could exploit this vulnerability." It notes that while users wouldn't be forced to go to the site, they could be taken to the site through a link in an email or instant message.

Microsoft advises disabling the opening of RTF files in Microsoft Word to avoid these attacks. Other suggested workarounds included making Word open RTF files in Protected View, reading emails in plain text and using Microsoft Office File Block to prevent the opening of RTF files in Word 2003, 2007, 2010 and 2013.

Microsoft says that they are still investigation the vulnerability and may release a security update either as part of their monthly security updates, or release a special update outside of the monthly release. They also reminded customers to follow their general guidance of using a firewall, applying all software updates and using antimalware software.

While the attacks Microsoft says it is currently aware of targets Microsoft Word 2010, the alert also warns that affected software includes Microsoft Word 2007, 2010, 2013, Office for Mac 2011 and several other pieces of software. You can read the full list on Microsoft's website.

An automated "Fix It" tool is also being offered by Microsoft.

You can read a more technical explanation from Microsoft's Security Research and Defense Blog, including advice for business enterprise networks.

As Editor-in-Chief of our newsroom, I’m extremely proud of the work our top-notch journalists are doing here at LAist. We’re doing more hard-hitting watchdog journalism than ever before — powerful reporting on the economy, elections, climate and the homelessness crisis that is making a difference in your lives. At the same time, it’s never been more difficult to maintain a paywall-free, independent news source that informs, inspires, and engages everyone.

Simply put, we cannot do this essential work without your help. Federal funding for public media has been clawed back by Congress and that means LAist has lost $3.4 million in federal funding over the next two years. So we’re asking for your help. LAist has been there for you and we’re asking you to be here for us.

We rely on donations from readers like you to stay independent, which keeps our nonprofit newsroom strong and accountable to you.

No matter where you stand on the political spectrum, press freedom is at the core of keeping our nation free and fair. And as the landscape of free press changes, LAist will remain a voice you know and trust, but the amount of reader support we receive will help determine how strong of a newsroom we are going forward to cover the important news from our community.

Please take action today to support your trusted source for local news with a donation that makes sense for your budget.

Thank you for your generous support and believing in independent news.

Chip in now to fund your local journalism
A row of graphics payment types: Visa, MasterCard, Apple Pay and PayPal, and  below a lock with Secure Payment text to the right
(
LAist
)

Trending on LAist