Microsoft Zero-Day Vulnerability – OLE2Link – Threat Intelligence and Signatures

NCC Group is currently aware of a zero-day vulnerability targeting Microsoft Office users which is being exploited in the wild by a number of threat actors including organised criminal gangs.

NCC Group has identified various samples exploiting this issue from as far back as 2016.

Click here to see NCC Group’s analysis:

In the interim, the NCC Group Cyber Defence Operations team has released a Suricata IDS signature for the download element of the exploit –

For more information, contact

Written by Cyber Defence Operations Team
First published on 11/04/17

Call us before you need us.

Our experts will help you.

Get in touch