Cyber-criminals exploit Access flaw

By
Follow google news

Security experts have warned of a new vulnerability in Microsoft Access which is being used by cyber-criminals to install malware on victims' computers..

Cyber-criminals exploit Access flaw
PandaLabs said that the security hole is exploited through specially crafted Access files (.mdb) embedded with malicious code.

The flaw is being used to distribute the Keylogger.DB Trojan which is designed to steal confidential data by logging keystrokes.

PandaLabs said that this is a similar security problem to that discovered a few months back, categorised as CVE-2007-6026, but the new flaw also affects the msjet40.dll library, albeit at a different point.

Luis Corrons, technical director of PandaLabs, said: "Whenever a vulnerability of this type appears cyber-crooks will try to take full advantage.

"We can therefore expect to see more malicious Access files in circulation that contain this Trojan and other types of threat."

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
accesscybercriminalsexploitflawsecurity

Sponsored Whitepapers

5 reasons to adopt a mobile first security strategy
5 reasons to adopt a mobile first security strategy
Uncomplicate IT Service Delivery with AI Agents
Uncomplicate IT Service Delivery with AI Agents
Getting ahead of the tech: what’s next for Australian organisations in digital transformation
Getting ahead of the tech: what’s next for Australian organisations in digital transformation
Fintech compliance made fast and secure
Fintech compliance made fast and secure
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide

Events

Most Read Articles

Supply chain attack hits 100 million-download Axios npm package

Supply chain attack hits 100 million-download Axios npm package
NAB is co-designing a SIEM with Databricks

NAB is co-designing a SIEM with Databricks
APRA pulls data submission system after security pentest

APRA pulls data submission system after security pentest
Councils push for federal shared security centre funding

Councils push for federal shared security centre funding
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?