MS Office Heavily Exploited By Cybercriminals

John E. Kaye
- Published
- Home, Technology

PreciseSecurity.com released a report in which they explained that the most commonly exploited applications worldwide this third quarter were linked to MS Office. Most of these attacks came from the United States followed by the Netherlands and Germany, among others.
As per this data, MS Office solutions and applications were the most commonly exploited by cybercriminals around the world. Data shows that exactly 72.85% of cyber exploits were performed in MS Office products as of the third quarter of this year.
MS Office products were followed by Browsers with 13.47% of the total number of exploits by cybercriminals, Android with 9.09%, Java with 2.36%, Adobe Flash with 1.57% and PDF with 0.66%.
In computer security, an exploit makes reference to individuals such as hackers or criminals that make use and take advantage of a bug or vulnerability in a specific software or computer program. In many cases, these exploits can be very costly for companies and other customers that could eventually be affected.
Moreover, the data collected by PreciseSecurity.com shows that the top 5 countries that are sources of web-based attacks include the United States with 79.16% of the market share. This is followed by the Netherlands with 15.58%, Germany with 2.35%, France with 1.85% and Russia 1.05%.
Some of the most common vulnerabilities in MS Office were related to stack overflow errors in the Equation Editor application. Other vulnerabilities were CVE-2017-8570, CVE-2017-8759, and CVE-2017-0199, among others.
Another important vulnerability was related to a zero-day issue CVE-2019-1367 that produced memory corruption and allowed remote code execution on the target system.
Nowadays, browsers are very complex products that tend to have many vulnerabilities. This happens because hackers and attackers are at all times finding and searching for new bugs to exploit and take advantage of.
Many of these vulnerabilities found in the last quarter aimed at privilege escalation inside the system stem from individual operating system services and popular applications.
Companies, applications, and firms are trying to avoid these exploits and reduce them to the minimum. In general, they are very costly and can affect a larger number of users. However, hackers and attackers are usually ready to find new bugs and use them to take advantage of these systems.
Some of the worst exploits are related to financial applications that could have a negative financial effect on other users or individuals. At the same time, financial data is becoming increasingly important and valuable in the dark web, which is pushing hackers and attackers to obtain this data as well to sell it later to scammers and other malicious parties.
RECENT ARTICLES
-
Short circuit: humanoids go for gold at first 'Olympics for robots'
-
New IBM–NASA AI aims to forecast solar flares before they knock out satellites or endanger astronauts
-
AI is powering the most convincing scams you've ever seen
-
British firm Skyral to help Mongolia tackle pollution with AI traffic modelling
-
The nuclear medicine breakthrough transforming cancer care
-
Second to none: the watchmaker who redefined time for women
-
How AI agents are supercharging cybercrime
-
The CEO making culture the driving force for innovation
-
Penelope J. Corfield on the secret gestures that shape society
-
In Africa, hepatitis B is a silent killer. And a $1 test could stop it
-
'Our real rivals are TikTok and Netflix’ – iGaming firm Soft2Bet sets out strategy for global expansion
-
AI agents are just the start. Here’s what comes next
-
Why cybersecurity deserves a place in the political spotlight
-
Outpacing cyber threats, winning the race
-
Who is really cutting emissions? These satellites will tell us
-
New Science Matters supplement out now — Europe’s boldest ideas in one place
-
New app reveals hidden health risks in everyday foods
-
Alzheimer’s vaccine enters human trials aiming to stop disease before symptoms begin
-
US researchers develop storm-resistant drone to improve extreme weather forecasting
-
Robot folds 800 napkins in 24 hours as Dyna Robotics launches first commercial-ready embodied AI
-
New breast cancer radiotherapy technology launches in Europe
-
Blockchain boom could create over 1 million jobs by 2030, new report claims
-
Why modern computer games aren’t a patch on the classics
-
Watch: Robotic bellboys checking in to a hotel near you soon
-
Soft2Bet reflects on eight years of leadership and philanthropy in new film featuring CEO Uri Poliavich