Microsoft Finally Patches Bug in Word That Scammers Used to Steal Banking Info

It Took Microsoft Nine Months to Fix That Word Bug·Fortune

Jeff John Roberts

Updated Tue, Apr 11, 2017, 6:51 PM

If you get an email that contains an unfamiliar Word document, for goodness sake, don’t open it. The file could unleash a secret program designed to hoover up your banking information and send it to a cyber-criminal.

In recent weeks, scammers have been running a massive email campaign to trick people into clicking on booby-trapped Word documents. Clicking on the documents serves to start a download of the so-called “Dridex banking Trojan,” which installs a program designed to steal banking information.

As the security firm Proofpoint explains in a blog post, the scammers’ email came with the subject line “Scan Data” and included Microsoft Word attachments that said “Scan” and a random number. The company points out the emails are not as devious as some forms of phishing campaigns (like this one that pretends to be from the SEC), but they are still effective enough to trick people.

Get Data Sheet, Fortune‘s technology newsletter.

“Note that while this campaign does not rely on sophisticated social engineering, the spoofed email domains and common practice of emailing digitized versions of documents make the lures fairly convincing,” said Proofpoint, adding the scammers have targeted millions of people, mostly in Australian organizations.

Some have criticized Microsoft for failing to warn users about the dangers posed by the Dridex bug, which the company has reportedly known about since January. A Microsoft Office update to disable the dangerous documents was finally released today.

"This was addressed in the April security update release today, April 11, 2017. Customers who applied the update, or have automatic updates enabled, are already protected,” said a Microsoft spokesperson.

The scare over the fake Microsoft Word documents comes after another recent campaign that used realistic-looking attachments to persuade Gmail users to hand over their log-in credentials. In this case, what appeared to be an attached file was actually an embedded image that linked out to a fake Gmail login page.

See original article on Fortune.com

More from Fortune.com

‘Americans just work harder’ than Europeans, says CEO of Norway’s $1.6 trillion oil fund, because they have a higher ‘general level of ambition’
"We are not very ambitious. I should be careful about talking about work-life balance, but the Americans just work harder.”
Fortune•19h ago
Warren Buffett Says 'When It Rains Gold, Put Out The Bucket' And This High Yield Investment Is Making It Rain
In his 2016 letter to Berkshire Hathaway shareholders, legendary investor Warren Buffett wrote, “Every decade or so, dark clouds will fill the economic skies, and they will briefly rain gold. When downpours of that sort occur, it’s imperative that we ...
Benzinga•13h ago
Microsoft beats Q3 top and bottom lines on cloud strength
Microsoft reported better than anticipated Q3 earnings on Thursday, powered by growth in its cloud products.
Yahoo Finance•8h ago
The Vanguard 500 Index Fund Is Great, But Another Vanguard ETF Has Outperformed It the Past Decade
This growth ETF has nicely outperformed the S&P 500 since its inception.
Motley Fool•20h ago
Billionaire 'bond king' Bill Gross tells investors to avoid tech and stick to value stocks
Gross said in a post on X to avoid tech, but if you have to invest in the sector, one name stands out.
Business Insider•3h ago
Javier Milei Fuels Wild Rally That Makes Peso No. 1 in World
(Bloomberg) -- Four months into office, Argentine President Javier Milei has pulled off a critical feat in a country long ravaged by runaway inflation: He stabilized the currency.Most Read from BloombergUS Economy Slows and Inflation Jumps, Damping Soft-Landing HopesJavier Milei Fuels Wild Rally That Makes Peso No. 1 in WorldMalaysia in Talks With Tycoons on Casino to Revive $100 Billion Forest CityPlunging Home Prices, Fleeing Companies: Austin’s Glow Is FadingBig Tech Surges in Late Hours on B
Bloomberg•13h ago
Hertz loses another $200 million from its EVs
Car-rental operator Hertz reported it lost another $200 million due to its EV gamble.
Yahoo Finance•13h ago
The US economy may be barrelling towards stagflation, an outcome worse than recession
As US growth shows signs of sputtering and inflation keeps rising, a re-run of the tumultuous 1970s is looking more likely.
Business Insider•3h ago
Mark Zuckerberg got $24.4 million in ‘other compensation’ in 2023—but Meta also treated staff well, with the median employee making $379,000
On paper, Mark Zuckerberg is Meta’s lowest-paid employee, with a $1 dollar salary and no bonus.
Fortune•2d ago
Intel reports better than expected Q1 earnings but falls short on revenue outlook. Stock slides more than 5%.
Intel reported its Q1 earnings on Thursday, beating analysts' estimates. But a disappointing outlook sent shares sliding.
Yahoo Finance•10h ago

News

Life

Entertainment

Finance

Sports

New on Yahoo

Yahoo Finance

Microsoft Finally Patches Bug in Word That Scammers Used to Steal Banking Info

Recommended Stories

‘Americans just work harder’ than Europeans, says CEO of Norway’s $1.6 trillion oil fund, because they have a higher ‘general level of ambition’

Warren Buffett Says 'When It Rains Gold, Put Out The Bucket' And This High Yield Investment Is Making It Rain

Microsoft beats Q3 top and bottom lines on cloud strength

The Vanguard 500 Index Fund Is Great, But Another Vanguard ETF Has Outperformed It the Past Decade

Billionaire 'bond king' Bill Gross tells investors to avoid tech and stick to value stocks

Javier Milei Fuels Wild Rally That Makes Peso No. 1 in World

Hertz loses another $200 million from its EVs

The US economy may be barrelling towards stagflation, an outcome worse than recession

Mark Zuckerberg got $24.4 million in ‘other compensation’ in 2023—but Meta also treated staff well, with the median employee making $379,000

Intel reports better than expected Q1 earnings but falls short on revenue outlook. Stock slides more than 5%.