Hacks – May 2022 – Follina Zero Day Vulnerability

Tips and Tricks to mitigate and prevent “Follina”:

Turn off the preview pane in file explorer and Microsoft Outlook.
- File explorer – go to the View menu tab, if preview pane is highlighted, click it to disable
- Microsoft Outlook –
  - File > Options > Trust Center > Trust Center Settings,and then select Attachment Handling.
  - Click Turn off Attachment Preview
- Always verify the sender of an email.
- Hover over hyperlinks before clicking them to reveal their true location.
- Never open an attachment you are unsure of.

References:

https://www.huntress.com/blog/microsoft-office-remote-code-execution-follina-msdt-bug?hstc=1139630.416896d61b0745d0044e9a03af7f82ad.1653955273132.1653955273132.1653955273132.1&_

hssc=1139630.1.1653955273132&__hsfp=3244405923&hsutk=416896d61b0745d0044e9a03af7f82ad&contentType=listing-page

https://doublepulsar.com/follina-a-microsoft-office-code-execution-vulnerability-1a47fce5629e

https://support.microsoft.com/en-us/office/preview-attachments-in-outlook-6f61e4ad-a93d-408c-bb3a-bc95107f66be

https://threatpost.com/zero-day-follina-bug-lays-older-microsoft-office-versions-open-to-attack/179756/

https://www.reddit.com/r/msp/comments/v0tuvs/ms_office_vuln_polite_warning_about_nearterm/

Recent blog posts

Common Vulnerabilities and Exposures – October 2022

Hacks – October 2022

Protecting your data – The CIA Triad – Part One: Confidentiality

Need help with this?

Enter your details below and one of our team will get in touch

Other Similar Articles

Why is penetration testing important for your business

Partner Message Checkpoint Breakfast

Hacks – Authentication

Standard Operating Environment (SOE) traps to avoid

Our Office

Level 2, 157 Walker Street, North Sydney, NSW 2060

Call Us

(02) 9136 6066

Email Address

info@brace168.com