This nasty Internet Explorer zero-day is now launching real-world attacks

Internet Explorer zero-day has yet to be patched

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Threat actors are exploiting a zero-day vulnerability in a criticalInternet Explorer(IE) component to targetMicrosoft Officeusers, warncybersecurityresearchers.

The attack was detected by researchers at the exploit detection service, Expmon, who brought it to the attention ofMicrosoft, which has now published a security advisory on the ongoing threat.

“Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents,” Microsoft warns through itsadvisory.

We’re looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won’t take more than 60 seconds of your time, and we’d hugely appreciate if you’d share your experiences with us.

Click here to start the survey in a new window«

The vulnerability, tracked as CVE-2021-40444, impacts IE’s browser engine Trident, also known as MSHTML, which also helps render browser-based content inside Microsoft Office documents.

No patch yet

According to Expmon, the vulnerability impacts the latest versions of both the offline and online instances of Microsoft Office.

“We have reproduced the attack on the latest Office 2019 /Office 365onWindows 10(typical user environment), for all affected versions please read the Microsoft Security Advisory. The exploit uses logical flaws so the exploitation is perfectly reliable (& dangerous),”shared Expmon.

Talking about the exploitation mechanism, Microsoft says that the vulnerability is exploited via malicious ActiveX controls embedded in Office documents. However, the company hasn’t revealed any details about the nature of the zero-day, nor has it commented on the on-going attack.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

This isn’t surprising since it hasn’t yet patched the zero-day, which might be addressed either during an upcoming Patch Tuesday, or through an out-of-cycle update.

In the meantime, Microsoft suggests users to disable the rendering of ActiveX content in Office documents, while Expmon urges users to avoid opening documents from unknown sources.

With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’sTechRadar Pro’sexpert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.

This new phishing strategy utilizes GitHub comments to distribute malware

Should your VPN always be on?

Anker Nebula Mars 3 review: A powerful and truly portable projector