News

Russian New Year Exploitation Effects Excel Users

Finjan Software Ltd. (www.finjan.com) will hold a press conference later today to announce a security hole that could effect the vast majority of corporate users of the Internet.

Called the Russian New Year exploitation, the attack takes the HTML and "Call" functions available in Microsoft Excel 95 and 97 and combines them into a strike that can be what Finjan calls "extremely malicious and damaging."

With this combination, an attacker could steal or copy Internet users' files without their knowledge. Most importantly, Excel does not have to be running to execute the exploit; it simply has to be installed on the users' PC.

It's suspected that this process could occur just from visiting a malicious Web site that has the exploit ready to launch once a user visits. The exploit has been named Russian New Year because of its timely announcement and the nation in which it was first discovered. -- Brian Ploskina, Assistant Editor

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • How To Use PowerShell Splatting

    Despite its weird name, splatting can be a really handy technique if you create a lot of PowerShell scripts.

  • New Microsoft Customer Agreement for Buying Azure Services To Start in March

    Microsoft will have a new approach for organizations buying Azure services called the "Microsoft Customer Agreement," which will be available for some customers starting as early as this March.

  • Windows 7 To Fall Out of Support in One Year

    January 14 marks a one-year period before the end of support for Windows 7.

  • CES 2019: Windows PCs Evolve for Modern Users

    Microsoft's PC partners are increasingly focused on polishing existing features to target freelancers, remote workers and creatives.

comments powered by Disqus
Most   Popular

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.