Hackers used Microsoft Word bug 'for months'

A bug in Microsoft Word was exploited by hackers for months before it was eventually fixed, according to security researchers. Microsoft could have notified customers to make a change to settings in Word that would have prevented the vulnerability from being exploited - but that would also have alerted hackers to its existence. The decision to wait for a patch seems to have allowed a window of opportunity for hackers to discover the flaw on their own. In March, cyber-security company FireEye noticed financial hacking software that was being distributed with the Microsoft bug. McAfee faced some criticism for publishing a blog post about the vulnerability - with details hackers may have found useful - two days before it was fixed.

Read the full story

 Related companies

Make a complaint about Microsoft by viewing their customer service contacts.

•