A bug in Word apparently targeted by scammers trying to steal banking logins will be patched, Microsoft has said. The previously undetected, or "zero-day", vulnerability had been reported over the weekend. On 10 April, cybersecurity firm Proofpoint announced it had discovered an email campaign targeting the bug that aimed to distributed Dridex malware. Dridex is designed to infect a victim's computer and snoop on banking logins. The flaw discovered in many versions of Microsoft Word for Windows could allow malicious software, including Dridex, to be installed, according to cybersecurity researchers. A scam email campaign was found to be distributing Microsoft Word RTF [Rich Text Format] documents to recipients that contained Dridex.
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street