Network Synergy Blog

Network Synergy has been serving the Trumbull area since 1988, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

WARNING: A New Zero-Day Threat is On the Loose

WARNING: A New Zero-Day Threat is On the Loose

Zero-day threats are some of the most dangerous ones out there. What we mean by “zero day” threats are those that have been discovered by hackers before an official patch has been released by the developers, giving them exactly zero days before they are actively exploited in the wild. One of the more dangerous zero-day threats out there at the moment is one that takes advantage of Internet Explorer.

Before we start making Internet Explorer jokes, we want to mention that there is nothing funny about online threats--particularly those that haven’t been addressed yet by the developers. This newly discovered zero-day threat is called the “Double Kill” Internet Explorer vulnerability. Unfortunately, the Chinese developers who discovered this vulnerability--a computer security company called Qihoo--have been quiet about the details regarding the double-kill IE bug. It’s also difficult to tell if your organization is under threat, as they aren’t revealing any of the warning signs of such an attack.

The only thing known for sure about this threat is that it takes root by using Word documents. It’s likely that this is done through email attachments as well, as email is a major method of transporting threats of all kinds. When the document is opened up, Internet Explorer is opened in the background via some kind of shellcode that downloads an executable file. The vulnerability does all this without showing anything of note to the user, making it a difficult threat to identify, but the effects are well-known. Apparently, the downloaded executable file installs a Trojan horse malware on the user’s device which creates a backdoor into the system.

There are a lot more unknowns than anything else with this vulnerability, though. In particular, professionals aren’t sure if all Word documents are affected by this vulnerability, or if the threat even needs Microsoft Office in order to function as intended. It’s not even known what role Internet Explorer plays in the attack, or if the documents that can trigger this attack are identifiable. All we can tell you is that you need to keep security best practices in mind to keep these kinds of zero-day threats from becoming a problem for your organization.

To start, you should never download an unexpected file from an unexpected sender. This can come in the form of a resume, receipt, or other online document. You can never know for sure what you’re actually downloading, as criminals have been able to spoof email addresses to a dangerous degree in recent years. Just be cautious about everything you can, and augment caution with powerful security tools that can identify potential risks before they become major problems.

To get started with network security, reach out to Network Synergy at 203.261.2201.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Thursday, 24 May 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab

QR-Code dieser Seite

Sign Up

  • First Name *
  • Last Name *

      Blog Categories

      Best Practices Uninterrupted Power Supply Cyber Monday Avoiding Downtime Congratulations Webcam Cost Management Safety Android IoT IT Management Modem WiFi Money Streaming Media Social Miscellaneous Infrastructure Physical Security Technology Spam Managed IT Hacker Electronic Medical Records Patch Management Lenovo Virtual Private Network Storage Government SaaS Data Intranet Firewall Education SharePoint Microsoft Office Mobile Technology Assessment Recycling Operations Remote Monitoring Search Mobile Office IT Services Logs Save Time Mobile Devices Taxes Competition Hosted Solution Customer Service Document Management IP Address Google Drive Alerts Downloads Law Firm IT Gadget Co-managed IT Robot Tracking Outsourced IT Internet Exlporer Skype Tip of the Week IBM Users Data Backup Excel Virtual Reality Emoji Computer Repair Fraud IT service Gmail Cleaning Windows 10 Presentation Windows 8 Healthcare Technology Tips Administrator Computers Files Social Engineering Computer Digital Payment Hotspot Migration Saving Money Data Recovery Mobile Security Going Green Chromebook Trending Digital Signature Touchscreen IT Support Address Fax Server BYOD Hiring/Firing Business Management Trainging Error 3D Printing Proactive IT Retail Experience Data Security Piracy Identity Bluetooth Crowdsourcing Productivity Hackers Politics Office Hardware Motherboard Twitter Chrome Two-factor Authentication PC Care Alert Content Filtering Small Business App Print Server Collaboration Productivity Google Calendar Tablet Environment Health Operating System Saving Time Domains Scheduling Internet of Things iPhone eWaste Big Data Disaster Undo HIPAA Buisness Google Docs Personal Information Black Market IT Solutions Best Practice Security Business Continuity Service-based Business Cloud End of Support Leadership Web Server Sync Break Fix Managed IT Services Hosted Solutions Hard Disk Drive Text Messaging Printing User Tips Video Surveillance Remote Support CCTV Food Utility Computing Cameras Laptop Cortana CIO Application Drones Connectivity Net Neutrality Password Redundancy Start Menu Vulnerability Google Mobile Computing Antivirus Holiday Bandwidth Consultation Smart Technology Bitcoin Hacking Risk Management Cybersecurity Project Management Unified Threat Management Encryption Bring Your Own Device Data storage Software as a Service Unified Communications Hacks Notifications Entrepreneur Budget Google Maps Websites Identities Business LiFi Computer Accessories Save Money Travel Virtual Desktop Inbound Marketing Phone System Public Cloud Administration Upgrade Business Owner Work Station Backup Work/Life Balance Network Management Access Control Value Technology Laws Unified Threat Management Settings Software Tips Software Dark Web Scam Analyitcs Battery Mobility Samsung Legal Computing Infrastructure Troubleshooting Recovery Telephony Staff Google Wallet Remote Computing Virtualization Time Management Relocation Humor Shortcut Innovation USB Internet Ransomware Managed IT Service Gaming Console Wi-Fi Vendor Management Cooperation Law Enforcement Conferencing User Marketing Specifications Maintenance Outlook Licensing Managed Service Provider Business Growth Memory Data Management Company Culture Hard Drive Office 365 File Sharing Disaster Recovery Statistics Browser Tip of the Work Language Communication Privacy Macro Customer Relationship Management Distributed Denial of Service Mouse Staffing Machine Learning YouTube Apps BDR IT Consultant Permissions Nanotechnology Cloud Computing Phishing Server Screen Reader IT budget Meetings Writing Corporate Profile IT Consulting Disaster Resistance Solid State Drive Router Servers Fun Mail Merge Cryptocurrency Data Warehousing Programming Digital Information Technology Scary Stories Compliance Identity Theft Quick Tips VPN User Error Regulations Consumers Network Security Employer-Employee Relationship 3D Telephone Systems Best Available VoIP Spyware Alt Codes Network Mobile Device Management Smartphone Help Desk GPS 5G Smart Tech History Facebook Paperless Office Training Crowdfunding eBay Heating/Cooling Chatbots Unsupported Software Tech Support Website Hard Drives Cookies Printer Tip of the week Webinar Tutorials IT Support Running Cable Cache Computer Care Documents communications People Star Wars Social Networking Virus Wireless Technology How To Data Loss Knowledge Microsoft Excel Supercomputer Applications Data Breach Public Speaking Social Media Tech Term Smartphones Computing Augmented Reality Windows Secruity Motion sickness Botnet Mirgation Mobile Device Managed IT services Typing Cybercrime Charger LinkedIn Sports Apple PowerPoint Automation Thank You Deep Learning Lithium-ion Battery Flexibility Networking Wearable Technology Microsoft Multi-Factor Security Office Tips Downtime Comparison Server Management Windows 8.1 Update Techology Superfish Business Intelligence Display CrashOverride Upgrades Point of Sale Online Currency G Suite Google Analytics Efficiency Malware Halloween Wireless The Internet of Things Gadgets Mobile Data Workplace Tips Automobile Business Computing IT Technicians Network Congestion Firefox Passwords Private Cloud Artificial Intelligence Blockchain Business Technology Backups Legislation Word Windows 10 Processors Refrigeration Email Monitors Debate Current Events Cabling Black Friday PDF

      Latest Blogs

      Wi-Fi has been one of the single most useful innovations for the modern office. Connecting to your Internet without having to be physically connected to it via an ethernet wire has...

      Latest News

      Our Site Has Launched!

      flag

      Welcome to Our New Site!
      We are proud to announce the unveiling of our new website at Network Synergy!

      Read more ...

      Contact Us

      Learn more about what Network Synergy can do for your business.

      callphone

      Call us today    203.261.2201

      Fax Number :    203-261-2935

      126 Monroe Turnpike
      Trumbull, Connecticut 06611

      facebook twitter linkedin #youtube