Follina is a new Microsoft Office vulnerability.
This zero-day vulnerability in Microsoft Office is being exploited in boobytrapped Word documents to remotely run code on PCs. Unfortunately, it has been reported that the vulnerability can be exploited without requiring any user interaction other than previewing a malicious file. Victims may be deceived into opening documents using email attachments, social media links, and file downloads.
Since this is currently a zero-day vulnerability, Microsoft has yet to release a patch. In the meantime, you need be cautious and extra observant about opening Microsoft Office documents (Word, Excel, PowerPoint, etc.) from any source that you do not fully trust. Once a security patch is available, we encourage you to download it and reboot your machine ASAP.
If you are concerned about your cybersecurity defenses and want to learn how you can stay better protected, give us a call at 416 966-3306 and we can perform a Cybersecurity Risk Assessment for your business.
As always, stay safe out there.
We are dedicated to your success!