Office exploits reveal new direction in attack strategies


The recent run of publicised vulnerabilities in Microsoft Office and subsequent threats from malicious documents demonstrate that attackers are automating their hunt for exploits and turning toward targeting people, not systems, a security researcher said Monday.

The three months of Office vulnerabilities - which started in May with Word, then spread in June and July to Excel and PowerPoint, respectively - demonstrate a shift in tactics, said Alfred Huger, senior director of engineering with Symantec's security response group.

"They're targeting people rather than machines," he said. "They're not looking for hosts, but for usernames and email addresses. Office exploits reveal new direction in attack strategies - Security - www.itnews.com.au

Linked by shanmuga Tuesday, 25th July 2006 9:40PM