Think Before You Click – “Follina” MSDT Vulnerability

Notice Date: May 31, 2022  /  Alert Type: Security

A new remote code execution vulnerability, dubbed “Follina”, was recently discovered and Microsoft is actively working on releasing a patch to address the issue. Here is a quick recap:

  • This vulnerability is triggered by opening malicious Office documents
  • Threat actors may deceive victims into opening these documents using email attachments, social media links, file downloads, or other creative delivery methods

Because this vulnerability is only triggered when opening a malicious Office document, we recommend that all users use extra vigilance when receiving documents and clicking links, making sure that any attachments, documents, and links are trusted and legitimate. As soon as Microsoft releases a patch, you can rest assured that a COUPLE of GURUS will promptly push the patch through to all our Managed IT clients.