overview for Elephant0991

Dog repeatedly escapes Up North shelter, sneaks into nursing home in c/[email protected]

[–] [email protected] 2 points 2 years ago

That's a wonderful story. Thank you for sharing.

Ban dihydrogen monoxide in c/[email protected]

[–] [email protected] 40 points 2 years ago (1 children)

You definitely don't want this stuff to escape into the atmosphere.

Buyer must bring (1) Fiddle. in c/[email protected]

[–] [email protected] 2 points 2 years ago

Matching atmosphere. Like the floating door; you can be pushed right from inside the house onto the lawn.

What a lucky dude. Where do I get one? in c/[email protected]

[–] [email protected] 3 points 2 years ago

Practically true.

Supervisors came to see how the work is looking out there in c/[email protected]

[–] [email protected] 3 points 2 years ago

That's like, real estate inspection.

*Permanently Deleted* in c/[email protected]

[–] [email protected] 6 points 2 years ago

When I forgot part of my my old password, I came up with a list of words that I possibly could have come up with and tried those. I eventually found it even if I was panicky the whole time. If I were you, I would list the words and try them in the order of probabilities.

Un/Fortunately, BW is implemented to rate-limit password brute-forcing. I feel you about your CAPTCHA hell, and I hate their surreal sunflower CAPTCHA (maybe to make it as repulsive as possible to the hackers?).

Lemmy Democrats, what is just ONE nice thing you can say about Donald Trump? in c/[email protected]

[–] [email protected] 1 points 2 years ago

Didn't his admin approve the Operation Warp Speed thingy?

Indian Government Workers Wear Motorcycle Helmets as Protection from Falling Debris in c/[email protected]

[–] [email protected] 2 points 2 years ago

That's probably not just for debris protection; there's also bat shit!

Feelings in c/[email protected]

[–] [email protected] 5 points 2 years ago

The show must go on.

After working IT for 20 years and trying to keep a smile the whole time in c/[email protected]

[–] [email protected] 9 points 2 years ago

5 million bees fall off a truck near Toronto; drivers asked to close windows in c/[email protected]

[–] [email protected] 27 points 2 years ago

How a Well-Regarded Mac App Became a Trojan Horse in c/[email protected]

[–] [email protected] 13 points 2 years ago* (last edited 2 years ago)

True.

Automatic patch => automatic installation of malware
Manual patch => unpatched vulnerabilities

Screwed either way.

16

[Corp Blog] Zero-day deploys remote code execution vulnerability via Word documents (www.malwarebytes.com)

submitted 2 years ago by [email protected] to c/[email protected]

0 comments fedilink

Summary

A zero-day vulnerability (CVE-2023-36884) is being exploited in the wild to target those with an interest in Ukraine.
The vulnerability allows attackers to execute malicious code on a victim's computer by tricking them into opening a specially crafted Microsoft Office document.
The attacks are being carried out by a group known as Storm-0978, which is also known for distributing trojanized versions of popular software and launching ransomware attacks.
Microsoft recommends that organizations use Microsoft Defender for Office 365 or the Block all Office applications from creating child processes attack surface reduction rule to protect themselves from this vulnerability.
Organizations can also consider blocking outbound SMB traffic.

Other details

The phishing campaign that is being used to deliver the malicious Office documents is targeting defense and government entities in Europe and North America.
The bait used in the phishing emails is related to the Ukrainian World Congress, a non-profit organization of Ukrainian public organizations in diaspora.
Once a victim opens the malicious Office document, the attacker can execute arbitrary code on their computer.
The attacker can then use this code to steal data, install malware, or take control of the victim's computer.

Microsoft's CVE-2023-36884 specific recommendations

Customers who use Microsoft Defender for Office 365 are protected from attachments that attempt to exploit CVE-2023-36884.
In current attack chains, the use of the Block all Office applications from creating child processes attack surface reduction rule prevents the vulnerability from being exploited
Organizations who cannot take advantage of these protections can set the FEATURE_BLOCK_CROSS_PROTOCOL_FILE_NAVIGATION registry key to avoid exploitation. Please note that while these registry settings would mitigate exploitation of this issue, it could affect regular functionality for certain use cases related to these applications.

Other recommendation:

You could also consider blocking outbound SMB traffic.