ALERT! – Microsoft Zero Day Exploit – ALERT!

Published On March 24, 2020 | By Tom Huskerson | Alerts, News and Analysis

Microsoft is warning users of its Windows product of as zero day exploit that can attack even fully updated computers. A zero day exploit is a vulnerability that is known to a software maker with no patch or fix available. Basically its a nasty surprise.

According to Microsoft a remote code-execution vulnerability is being used in “limited targeted attacks.” Microsoft published the advisory on Monday morning.

The security flaw exists in the Adobe Type Manager Library, a Windows DLL file that a wide variety of apps use to manage and render fonts available from Adobe Systems. Hackers exploit the vulnerability by convincing a target to open a booby-trapped document or viewing it in the Windows preview pane.

According to the advisory “Microsoft is aware of limited, targeted attacks that attempt to leverage this vulnerability.” Microsoft made no mention if the exploits are successfully executing malicious payloads or simply attempting it. Windows security defenses normally prevents exploits from working as hackers intended. The advisory made no reference to the volume or geographic locations of exploits. There is no fix available and no indication when one would ship.

The best advice available for non-tech Windows users is to refrain from opening attachments from people you don’t know. For tech savvy users Microsoft suggests the following;

  • Disabling the Preview Pane and Details Pane in Windows Explorer
  • Disabling the WebClient service
  • Rename ATMFD.DLL, or alternatively, disable the file from the registry

Like this Article? Share it!

About The Author

Tom Huskerson Bio Born in Richmond Virginia Tom Huskerson is a military veteran who settled in California after his discharge. Tom attended Santa Barbara City College where he began his writing career as a campus reporter. He worked as an intern news reporter for the Santa Barbara News-Press writing feature stories before moving on to San Francisco. At San Francisco State University Tom studied broadcast communications and began to focus on the Internet. He completed his graduate thesis on Internet advertising. Tom was the first student to ever focus on the Internet as a graduate student at San Francisco State University. After graduation he went to work for Zona Research in California’s Silicone Valley. As a research associate Tom supported senior analyst writing on the latest developments in the Internet industry. During the dot com boom Tom worked for several web businesses as a market researcher and analyst. As a writer and researcher Tom has authored various technical works including a training program for Charles Schwab security. Other projects included professional presentations on workplace violence and hiring security contractors. Tom has also written both fiction and non-fiction works and blogging for a travel website. He has published two books of short stories and completed two novels. Tom is the owner of Scribe of Life Literature and EbonyCandle.com. Tom is not the chief editor for the OnTechStreet. com. A news and information blog that focuses on tech news for African-Americans. The blog is the result of his desire to inform the African American community of the dangers and benefits of the cyber age. In his blog Tom reports on information security, new and analysis, scams and hoaxes, legal happenings and various topics that arise from the age of information. Tom believes that technology is a necessary tool for black people and they should know what is happening. Tom writes believing that techno speak is for the professional and that valuable information can be communicated using plain language. As a result he has embraced the motto, Less Tech, More Knowledge.

Leave a Reply

Your email address will not be published. Required fields are marked *