Zvigadzirwa zveMicrosoft Office ndiyo yakanangana nevanobira nhasi, maererano nedata rakanyorwa neKaspersky Lab. Mumharidzo yayo paSecurity Analyst Summit, kambani yakati ingangoita makumi manomwe muzana ekurwiswa kwezvinhu zvayo zvakaonekwa muQ70 4 yakaedza kushandisa Microsoft Office kusazvibata. Izvi zvakapetwa kanopfuura kana muzana iyo Kaspersky yakaona makore maviri apfuura mukota yechina ye2018, apo kushushikana kweHofisi kwakamira pamwero 2016%.
Panguva imwecheteyo, mumiriri wekambani yeKaspesky akacherechedza chinhu chinonakidza chokuti "hapana yehutambudzo hunonyanya kushandiswa huri muMS Office pachayo. Zvingave zvakanyatsojeka kutaura kuti kusasimba kuripo muzvikamu zvine chekuita neHofisi. " Semuyenzaniso, maviri ane ngozi zvikuru kusashanda ari CVE-2017-11882 и CVE-2018-0802, anowanikwa mune legacy Office Equation Editor, iyo yaimboshandiswa kugadzira nekugadzirisa equation.
"Kana iwe ukatarisa kune kwakakurumbira kusagadzikana kwe2018, unogona kuona kuti vanyori vemalware vanosarudza zviri nyore kushandisa zvikanganiso zvine musoro," kambani yakataura mumharidzo. "Ichi ndicho chikonzero nei iyo formula editor ine ngozi CVE-2017-11882 и CVE-2018-0802 parizvino ndiwo anonyanya kushandiswa muMS Office. Zvichitaurwa zviri nyore, ivo vakavimbika uye vanoshanda mushanduro yega yega yeShoko rakaburitswa mumakore gumi nemanomwe apfuura. Uye, zvinotonyanya kukosha, kugadzira chisimba kune chero chazvo hazvidi hunyanzvi hwepamusoro. "
Uye zvakare, kunyangwe kana kushaya simba kusingakanganisi Microsoft Office uye zvikamu zvayo, ivo vanowanzo shandisa hofisi chigadzirwa mafaera sechinhu chepakati chinongedzo. Semuyenzaniso, CVE-2018-8174 ibug mumuturikiri weWindows VBScript inotangwa neMS Office painogadzirisa zvinyorwa zveVisual Basic. Mamiriro akafanana ne CVE-2016-0189 и CVE-2018-8373, zvese zviri muinjini yeInternet Explorer scripting, iyo inoshandiswawo mumafaira eHofisi kugadzirisa zvirimo pawebhu.
Kusagadzikana kunotaurwa kuri muzvikamu zvave zvichishandiswa muMS Hofisi kwemakore mazhinji, uye kubvisa maturusi aya kunotyora kumashure kuenderana neshanduro dzekare dzeHofisi.
Pamusoro pezvo, mune imwe chirevo chakaburitswa mwedzi wapfuura nekambani , inosimbisawo zvichangobva kuwanikwa kubva kuKaspersky Lab. Mumushumo unotsanangura kusanyanya kushandiswa kwekusagadzikana muna 2018, Yakarekodhwa Ramangwana yakanyora kusakwana matanhatu muHofisi munzvimbo gumi dzepamusoro.
#1, #3, #5, #6, #7 uye #8 tsikidzi dzeMS Office kana kusasimba kunogona kushandiswa kuburikidza nemagwaro ari mumafomu ayo anotsigirwa.
- -Microsoft (inoshandiswa kuburikidza neHofisi mafaera)
- CVE-2018-4878 - Adobe
- -Microsoft (Office kukanganisa)
- CVE-2017-8750 - Microsoft
- -Microsoft (Office kukanganisa)
- -Microsoft (inoshandiswa kuburikidza neHofisi mafaera)
- -Microsoft (Office kukanganisa)
- -Microsoft (inoshandiswa kuburikidza neHofisi mafaera)
- CVE-2012-0158 - Microsoft
- CVE-2015-1805 - Google Android
Kaspersky Lab anotsanangura kuti chimwe chezvikonzero nei MS Office kusazvibata kuchiwanzo kunangwa nemalware imhaka yehutsotsi hwese huripo hwakatenderedza Microsoft hofisi chigadzirwa. Kana ruzivo rwekusagadzikana kweHofisi rwave pachena, kushandiswa kurishandisa kunoonekwa pamusika paRima Webhu mukati memazuva mashoma.
"Zvipembenene pachazvo zvave zvisinganyanyi kuomesesa, uye dzimwe nguva tsananguro yakadzama ndeye cybercriminal inoda kugadzira basa," anodaro mutauriri weKaspersky. Panguva imwecheteyo, sezvakataurwa naLeigh-Ann Galloway, mukuru wecybersecurity pa : "Nguva nenguva, kuburitsa kodhi yedemo yekusagadzikana kwezuva-zero uye ichangobva kuvharwa tsikidzi dzekuchengetedza kwagara kuchibatsira matsotsi kupfuura kudzivirira kwazvinoita vashandisi."
Source: 3dnews.ru