Mysterious “Follina” zero-day hole in Office – here’s what to do! - nakedsecurity.sophos.com

News has emerged of a “feature” in Office that has been abused as a zero-day bug to run evil code. Turning off macros doesn’t help!

The internet is abuzz with news of a zero-day remote code execution bug in Microsoft Office. More precisely, perhaps, it’s a code execution security hole that can be exploited by way of Office files… [+7523 chars]

full article...