Microsoft users warned of new high-risk vulnerability

Microsoft users warned of new high-risk vulnerability

The Australian Cyber Security Centre (ACSC) has warned of a high-risk vulnerability in a component present in all copies of Microsoft Windows that could be exploited by malicious cyber actors.

The vulnerability, named CVE-2021-40444, means a cyber actor could craft a malicious document and convince a Microsoft Windows user to open it as part of a spearphishing campaign.

Microsoft is already aware of targeted attacks that attempt to exploit this vulnerability, but it currently has no patch available.

However, Microsoft has identified some temporary mitigations which customers could implement to prevent exploitation. The ACSC recommends customers review these workarounds and implement them if possible.

Customers should also monitor Microsoft’s security advisory for the release of a patch to address this vulnerability.

Enjoyed this article?

Don't miss out on the knowledge and insights to be gained from our daily news and features.

Subscribe today to unlock unlimited access to in-depth business coverage, expert analysis, and exclusive content across all devices.

Support independent journalism and stay informed with stories that matter to you.

Subscribe now and get 50% off your first year!

Four time-saving tips for automating your investment portfolio
Partner Content
In today's fast-paced investment landscape, time is a valuable commodity. Fortunately, w...
Etoro
Advertisement

Related Stories

Australian Cyber Security Centre reports multiple victims of LockBit 2.0 ransomware

Australian Cyber Security Centre reports multiple victims of LockBit 2.0 ransomware

A ransomware attack called LockBit 2.0 has hit multiple organisat...

Macquarie Telecom's $78m boost to Sydney 'data fortress'

Macquarie Telecom's $78m boost to Sydney 'data fortress'

Macquarie Telecom Group (ASX: MAQ) is expanding its data centre o...

Is Australia a sitting duck for ransomware attacks?

Is Australia a sitting duck for ransomware attacks?

Australian organisations are a soft target for ransomware attacks...

Business email compromise scams cheat Australians out of $79m

Business email compromise scams cheat Australians out of $79m

The rise of remote working has been exploited by scammers who hav...