Another day another zero-day vulnerability in Microsoft’s office tools.  This new ‘Follina’ zero-day opens the door to a new critical attack vector leveraging Microsoft Office programs as it works without elevated privileges, bypasses Windows Defender detection, and does not need macro code to be enabled to execute binaries or scripts.

The vulnerability was officially announced by Microsoft on 30-May-22, and is thought to be already pursued in active exploitation attempts.  We advise all our clients and audience to review their environments and follow the Microsoft remediations in the link below.

Read more by clicking the buttons below.