Your Followed Topics

Top 1 cybersecurity and infrastructure security agency (cisa) News Today

#1
An almost two-decade-old Excel vulnerability is being actively exploited by bad actors
#1 out of 149.65%
technology4h ago

An almost two-decade-old Excel vulnerability is being actively exploited by bad actors

https://www.pcgamer.com/software/security/a-17-year-old-excel-vulnerability-is-currently-being-exploited-by-threat-actors-and-its-been-flagged-by-the-us-cyber-defence-agency/https://www.techradar.com/pro/security/an-ancient-microsoft-excel-security-flaw-could-let-hackers-hijack-your-entire-system-so-patch-now
Pcgamer.com and 1 more
  • CISA flags CVE-2009-0238 as actively exploited, urging patching by April 28.
  • The exploit enables remote code execution via a crafted Excel file.
  • Severity is rated 8.8/10, signaling serious potential impact.
  • Patch history shows the flaw was addressed long ago, yet some systems remain unpatched.
  • CISA also warns of a new Office 365 spoofing exploit that is automatable.
  • CISA links the Excel flaw to Trojan.Mdropper.AC malware in early reported campaigns.
  • The advisory covers several Excel versions on Windows and Mac platforms.
  • CISA updates KEV catalog with active exploits to guide organizations.
  • The risk extends to phishing and weaponized spreadsheets used in attacks.
  • The stories emphasize continuing legacy vulnerabilities despite patches.
Vote 1
0

Explore Your Interests

Unlimited Access
Personalized Feed
Full Experience
or
By continuing, you agree to the Privacy Policy.. You also agree to receive our newsletters, you can opt-out any time.

Explore Your Interests

Create an account and enjoy content that interests you with your personalized feed

Unlimited Access
Personalized Feed
Full Experience
or
By continuing, you agree to the Privacy Policy.. You also agree to receive our newsletters, you can opt-out any time.

Advertisement

Advertisement