2021-09-08: Exploit Mitigation for Microsoft MSHTML Remote Code Execution Vulnerability
Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents.
This attack can be mitigated using some registry edits as documented in this Workaround for CVE-2021-40444 zero-day attacks article from BleepingComputer.
Have your systems been patched?
All of our clients with Managed IT Services contracts have already had their systems patched. Is your current IT provider taking the necessary and proactive steps to keep your business safe? If you have doubts, it may be time to have a conversation about how to better manage your IT assets.