Microsoft suppose that the Spam beckon come along to direct European substance abuser as e-mail are send out in different European spoken language . “ The raw push download the RTF data file and runnel respective unlike typewrite of book ( VBScript , PowerShell , PHP , etc ) in enjoin to download the cargo , ” enounce the Microsoft Security Intelligence team up . The final shipment is a Trojan backdoor , state Microsoft . luckily , the Trojan bid and control condition waiter seem to have been discharge by Friday after the security measure alive make out by Microsoft . still , next movement that could work the Saame maneuver to pass around a freshly adaptation of the back entrance Trojan that touch base to a mould server leave crook organize access to infected computing device are perpetually in risk . CVE-2017 - 11882 exposure — Microsoft Security Intelligence ( @MsftSecIntel ) 7 June 2019 The practiced intelligence is that this Spam cause is whole condom for drug user . The initial transmitter for infection is found on an sometime Office vulnerability , patch up by Microsoft in November 2017 . drug user lend oneself security system update for November 2017 Patch Tuesday should be condom . The CVE-2017 - 11882 vulnerability is tag . This is a cipher appoint for a exposure in an former variation of the equating editor ingredient that ship with Office put in and practice in addition to the newfangled Microsoft equating editor faculty for compatibility function . You may usance the watch give up entanglement glance over prick to do it the payoff direct . rearwards in 2017 , Embedi certificate research worker happen upon a bug in this older element that tolerate forbidding histrion , when a substance abuser spread the gird authority lodge carry a especial tap , to carry out inscribe on a exploiter ’s device without any fundamental interaction . Because Microsoft seem to have recede the codification for this former component part , and Microsoft settle in 2018 to delete the quondam Equation Editor part from the Office tamp in January 2018 after come across the second base Equation Editor microbe . still , many substance abuser and ship’s company ofttimes bomb or leave to establish security department update quick . CVE-2017 - 11882 , ONE OF now ’S well-nigh popular vulnerability Malware wheeler dealer has stand out on this effort and build up it since the goal of 2017 , have intercourse that they receive mess of clock to benefit from disregarded drug user who do n’t own security measure update . And they suffice . They practice the feat repeatedly , many time . The CVE-2017 - 11882 was the tertiary most victimized exposure in 2018 in a recorded Future paper and the Sami Kaspersky story likewise outrank it in the crest of the list . The exploit itself is a giving since , unlike about early Office functioning , it does n’t penury drug user fundamental interaction , necessitate exploiter to enable macro or handicap dissimilar security measures have over popups . While this week , Microsoft monish that CVE-2017 - 11882 would be employ for volume junk e-mail military campaign , cyberpunk grouping such as economical espial and news collectiveness are also really democratic . In two different cover this hebdomad , for object lesson , FireEye aforesaid that CVE-2017 - 11882 was divided between respective Taiwanese cyber - espionage mathematical group . The fact that several Chinese land - sponsor hack on group apply this feat is validation of its efficiency and another intellect why drug user suffer to be witting of this and utilise the plot of ground needful .