"'Ancient' MSFT Word Bug Anchors Taiwanese Drone-Maker Attacks"

Attackers have weaponized an "ancient" version of Microsoft Word in an attack dubbed "WordDrone." The wave of WordDrone attacks targeted Taiwanese drone manufacturers. The malware delivered in these attacks supports the performance of cyber espionage and disruption of military and satellite-related industrial supply chains. Researchers with the Acronis Threat Research Unit discovered the attack, which involves using a Dynamic Link Library (DLL) side-loading technique common in Microsoft Word installation. The attack installs a persistent backdoor called "ClientEndPoint" on infected systems. This article continues to discuss findings and observations regarding the WordDrone attack.

Dark Reading reports "'Ancient' MSFT Word Bug Anchors Taiwanese Drone-Maker Attacks"

Submitted by grigby1