Hackers have started to abuse features provided on Microsoft Word to embed cryptojacking scripts on users’ computers and mine cryptocurrencies.
According to Votiro, an Israel cybersecurity company, hackers are making use of the Microsoft Word’s online video feature to encrypt cryptojacking scripts. The research says that hackers usually trick the users by playing an innocent video where the CPU is being exhausted in the background. Votiro even displayed a scenario where a simple 12-minute video related to cryptocurrency allowed them to hijack 99% of the victims CPU for crypto mining.
Amit Dori, a researcher at Votiro says,
“The threat of cryptocurrency mining through brower has become one of the most trending concerns in the internet realm.”
The Microsoft feature makes the software vulnerable to computer cryptojacking. Since Explorer is not the go-to browser in the world, its updation is done less frequently when compared to that of Chrome and Firefox. This has given hackers a window of opportunity to exploit its cracks and use it to their advantage.
Even though the issue has been presented multiple times to the Microsoft Security Response Centre, it was brushed off as they did not consider the evidence to prove that there’s a security issue.
During an interview with SC Media, a Microsoft spokesperson says,
“This technique relied on social engineering which convinces a user to open a malicious document and disable protected view. We recommend Microsoft customers to practice good computing habits online including making use of caution when clicking on links to web pages, opening unknown files or accepting file transfers.”
Joe Hank, a crypto miner from Paisley says,
“It’s the era of revolution. The whole world is making a move towards the moon and a problem as trivial as this shouldn’t be a barrier.”
Renaldi Wahid, a content writer at Oracle Media Services spoke to AMBCrypto and says,
“Why does Microsoft want us to practice ‘safe’ computing? It’s the system that has a flaw, people unlike me who do not understand the intricacies of using computing technology will fall for this flaw. They have shitty security and blame us for their carelessness”
The online security firms have already taken a step forward to make exchanges safer through browsers and ensure that hackers will not be able to take advantage of the user’s information.
Subscribe to AMBCrypto’s Newsletter
XRP/USD Price Analysis: Cryptocurrency settles into sideways movement as bull run ends
XRP/Ripple: R3’s Corda Settler dApp to be tested by InstiMatch Global using XRP
Mt. Gox: Infamous Bitcoin exchange had several issues with its code, reveals Mark Karpeles
Bitcoin Cash [BCH] support rolled out by Coinbase custodial wallet app
Bitcoin ETF: SEC adds VanEck-backed proposal for approval; initial decision in 45 days
DigiByte community gears up for Global Summit while founder Jared Tate finalises book on decentralized internet
Bitcoin [BTC] developer Jimmy Song lists 3 reasons why Bitcoin SV [BSV] is a “scam”
Bitcoin [BTC] among cryptocurrencies enabled by new debit card launched by Australian Crypto exchange
Ethereum [ETH] could have been stolen through malware impersonating MetaMask
After Bitcoin [BTC] ETF silver lining, SEC puts forth circular on ICOs
Bitcoin [BTC]: Mt Gox redemption plan demonstrates the power of open source network, says Brock Pierce
- Press Release
A New Generation of Crypto-Exchange: ALL IN ONE Crypto-Exchange
Flash Hike: XRP pumps by 10% as most top-10 coins gleam green
- Bitcoin Cash
Bitcoin Cash [BCH]: Roger Ver promises to sell his Bitcoins if the block size drops to 300KB