Barney's Blog

Blog archive

Patch or Be Attacked

Office is one big hunk of software, and by hunk I don't mean Fabio. After decades of features wars, this thing is bigger than Donald Trump's ego.

And anything that big is hard to protect. So Microsoft relentlessly patches its pride and joy. And hackers unceasingly look for new holes -- and sometime find them in old holes we thought were fixed.

That is the case with a patched hole in Word. This hole let hackers create malicious DLL files and sneak them into e-mails. Once you open the e-mail and then the infected Word doc, you're hosed.

The problem? Hackers know not everyone is up to date with patching. So they continue to attack it.

Well, that attack is back, says Symantec. "The exploit makes use of an ActiveX control embedded in a Word document file," wrote Takayoshi Nakayama, a researcher at Symantec, in a blog post. "When the Word document is opened, the ActiveX control calls fputlsat.dll which has the identical file name as the legitimate .dll file used for the Microsoft Office FrontPage Client Utility Library."

Of course once you are infected the real fun begins. Hackers then blast you malware.

The marker is a file attachment called ftutlsat.dll. Fortunately that file doesn't sound all that tempting.

Posted by Doug Barney on 02/15/2012 at 1:19 PM


  • Industrial Control System Honeypot Illustrates Bad Security Practices

    Security solutions provider Trend Micro has published results (PDF) from running an industrial control system (ICS) "honeypot."

  • Ransomware: What It Means for Your Database Servers

    Ransomware affects databases in very specific ways. Joey describes the mechanics of a SQL Server ransomware attack, what DBAs can do to protect their systems, and what security measures they should be advocating for.

  • Windows Admin Center vs. Hyper-V Manager: What's Better for Managing VMs?

    Microsoft's preferred interface for Windows Server is Windows Admin Center, but can it really replace Hyper-V Manager for managing virtual machines? Brien compares the two management tools.

  • Microsoft Offers More Help on Windows Server 2008 Upgrades

    Microsoft this week published additional help resources for organizations stuck on Windows Server 2008, which fell out of support on Jan. 14.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.