MerkSpy: Exploiting CVE-2021-40444 to Infiltrate Systems


Spyware is malicious software engineered to covertly monitor and gather information from a user’s computer without their awareness or consent.

It can record activities like keystrokes, browsing behavior, and personal information, often transmitting this data to a third party for espionage or theft. FortiGuard Labs recently detected an attack exploiting the CVE-2021-40444 vulnerability in Microsoft Office. This flaw allows attackers to execute malicious code via specially crafted documents. In this instance, the exploitation led to the deployment of a spyware payload known as “MerkSpy.” MerkSpy is designed to clandestinely monitor user activities, capture sensitive information, and establish persistence on compromised systems.

Read more…
Source: Fortinet


Sign up for our Newsletter


Related:

  • Over 500 Android Apps On Google Play Store Found Spying On 100 Million Users

    August 22, 2017

    Over 500 different Android apps that have been downloaded more than 100 million times from the official Google Play Store found to be infected with a malicious ad library that secretly distributes spyware to users and can perform dangerous operations. Since 90 per cent of Android apps is free to download from Google Play Store, advertising ...