Network Synergy Blog

Network Synergy has been serving the Trumbull area since 1988, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

WARNING: A New Zero-Day Threat is On the Loose

WARNING: A New Zero-Day Threat is On the Loose

Zero-day threats are some of the most dangerous ones out there. What we mean by “zero day” threats are those that have been discovered by hackers before an official patch has been released by the developers, giving them exactly zero days before they are actively exploited in the wild. One of the more dangerous zero-day threats out there at the moment is one that takes advantage of Internet Explorer.

Before we start making Internet Explorer jokes, we want to mention that there is nothing funny about online threats--particularly those that haven’t been addressed yet by the developers. This newly discovered zero-day threat is called the “Double Kill” Internet Explorer vulnerability. Unfortunately, the Chinese developers who discovered this vulnerability--a computer security company called Qihoo--have been quiet about the details regarding the double-kill IE bug. It’s also difficult to tell if your organization is under threat, as they aren’t revealing any of the warning signs of such an attack.

The only thing known for sure about this threat is that it takes root by using Word documents. It’s likely that this is done through email attachments as well, as email is a major method of transporting threats of all kinds. When the document is opened up, Internet Explorer is opened in the background via some kind of shellcode that downloads an executable file. The vulnerability does all this without showing anything of note to the user, making it a difficult threat to identify, but the effects are well-known. Apparently, the downloaded executable file installs a Trojan horse malware on the user’s device which creates a backdoor into the system.

There are a lot more unknowns than anything else with this vulnerability, though. In particular, professionals aren’t sure if all Word documents are affected by this vulnerability, or if the threat even needs Microsoft Office in order to function as intended. It’s not even known what role Internet Explorer plays in the attack, or if the documents that can trigger this attack are identifiable. All we can tell you is that you need to keep security best practices in mind to keep these kinds of zero-day threats from becoming a problem for your organization.

To start, you should never download an unexpected file from an unexpected sender. This can come in the form of a resume, receipt, or other online document. You can never know for sure what you’re actually downloading, as criminals have been able to spoof email addresses to a dangerous degree in recent years. Just be cautious about everything you can, and augment caution with powerful security tools that can identify potential risks before they become major problems.

To get started with network security, reach out to Network Synergy at 203.261.2201.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Saturday, 26 May 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab

QR-Code dieser Seite

Sign Up

  • First Name *
  • Last Name *

      Blog Categories

      CrashOverride Black Friday Data Breach Printer Point of Sale Facebook Emoji Computer Repair Outlook Apps Hotspot Consultation Unified Threat Management Modem Food Hiring/Firing Identity Network Security Customer Service Trending Operations Legislation Private Cloud Value Word Hosted Solution Shortcut Computer Accessories Secruity Servers IT Solutions Error LinkedIn Maintenance Software Current Events Security Relocation Samsung Data Backup Mobile Devices Macro Hard Drive Hacking Alerts Apple Utility Computing Botnet Business Intelligence communications Leadership Conferencing Laptop Tech Term PDF Social Media Co-managed IT Websites Tip of the Week Congratulations Software as a Service Memory Motion sickness Environment Documents Computers User Tips IT Support Blockchain Hosted Solutions IT Services Network Congestion Fun Software Tips Document Management Humor Remote Monitoring IT Support Digital Signature Writing Technology Tips Backups Unified Communications Skype Telephone Systems Customer Relationship Management Redundancy Communication Piracy Techology Passwords Cybercrime Information Technology Files Productivity Gmail PowerPoint Physical Security Business Computing Fax Server VPN Webinar Safety Work/Life Balance Wearable Technology Company Culture Mouse Tracking Infrastructure Deep Learning Alert Cortana Mobile Data SharePoint Malware Distributed Denial of Service 3D Printing Google Calendar Money Debate Smartphones Best Practices Mobile Technology Virtual Desktop Recovery Politics Android Knowledge Best Practice Business Owner Law Firm IT Competition Ransomware Computing Big Data Innovation eBay Domains CCTV Help Desk WiFi Battery Cloud Computing Settings Electronic Medical Records Mobile Office Router Users Social Best Available Government Miscellaneous Disaster Mobile Device Management Mobile Computing History Storage Data Security Avoiding Downtime IoT Efficiency Google Analytics Twitter Wi-Fi Comparison Managed Service Provider Browser Multi-Factor Security Small Business Windows 8 Time Management Buisness Chrome Entrepreneur Specifications PC Care Google Wallet Licensing Internet of Things Email Legal Compliance Connectivity Unsupported Software Unified Threat Management Paperless Office Language Smart Tech Marketing LiFi Cameras User Vulnerability Firewall Phone System Cost Management Printing How To Lenovo Troubleshooting Spyware IT Consultant VoIP Scam Analyitcs Sync Computing Infrastructure IP Address Downtime User Error Corporate Profile iPhone Gaming Console Recycling eWaste 3D Black Market Mobility Mirgation Thank You Break Fix Staffing Managed IT Services Administration Remote Support Fraud Experience Hacks Undo Dark Web Backup Display Save Time Cache Managed IT Application Bluetooth Motherboard Website Cabling Proactive IT Gadget Smartphone Business Technology Employer-Employee Relationship IT service Google Webcam Firefox Saving Time Social Networking Identity Theft Staff Robot Solid State Drive Uninterrupted Power Supply Outsourced IT Public Speaking Start Menu Microsoft Excel Windows 10 Law Enforcement Mail Merge GPS Vendor Management Office Tips Microsoft IT budget Public Cloud HIPAA Video Surveillance Typing Budget Applications Network Management Retail BYOD Presentation Alt Codes Bandwidth Content Filtering Logs Wireless Technology Phishing Work Station Chromebook Data Management Operating System Meetings Artificial Intelligence Password People Network Chatbots Inbound Marketing Touchscreen Digital Spam USB Tech Support App Data Recovery Privacy Processors Health Quick Tips Consumers 5G Two-factor Authentication Migration Holiday Online Currency Cooperation Search Disaster Recovery Hackers Flexibility Drones Managed IT Service Server Management Telephony Automation Regulations Excel Tablet Cybersecurity Streaming Media Business Hardware SaaS Cyber Monday Save Money Windows 8.1 Update Notifications IT Management Access Control Virtual Private Network Tutorials Sports Digital Payment Server Google Drive Scary Stories Data Loss CIO IT Technicians Superfish Business Continuity Cleaning Project Management Internet Machine Learning Hard Disk Drive Antivirus Cookies Training Encryption File Sharing G Suite Print Server Statistics Business Growth Trainging Data Warehousing Identities Smart Technology End of Support Administrator Mobile Security Halloween IBM Supercomputer Charger Taxes Permissions Computer Care Net Neutrality Running Cable Data Service-based Business Nanotechnology Internet Exlporer The Internet of Things Education Saving Money Virtualization Google Maps Tip of the week Refrigeration Risk Management Workplace Tips Gadgets Virus Productivity Data storage Cryptocurrency Going Green Healthcare Disaster Resistance Office Technology Laws BDR Web Server Upgrade Windows 10 Microsoft Office Travel Heating/Cooling Monitors Hacker Intranet Collaboration Downloads Computer Address Programming Managed IT services Wireless Virtual Reality Screen Reader Patch Management Business Management Text Messaging Assessment IT Consulting Lithium-ion Battery Crowdfunding Cloud Tip of the Work Social Engineering Augmented Reality Technology Scheduling Crowdsourcing YouTube Automobile Mobile Device Hard Drives Networking Upgrades Bitcoin Google Docs Star Wars Windows Personal Information Office 365 Remote Computing Bring Your Own Device

      Latest Blogs

      Nothing lasts forever - especially your business’ technology. However, you shouldn’t just get rid of your old technology willy-nilly. This is mostly for two reasons: one, many of t...

      Latest News

      Our Site Has Launched!

      flag

      Welcome to Our New Site!
      We are proud to announce the unveiling of our new website at Network Synergy!

      Read more ...

      Contact Us

      Learn more about what Network Synergy can do for your business.

      callphone

      Call us today    203.261.2201

      Fax Number :    203-261-2935

      126 Monroe Turnpike
      Trumbull, Connecticut 06611

      facebook twitter linkedin #youtube