Follina Patch Finally Out!

Security experts recently published a warning on a Microsoft zero-day vulnerability that has been exploited in the wild. Threat actors flocked in to exploit the information as soon as it was made public. Furthermore, there has been no patch for it for a long time. Follina is the name of the flaw, which is tracked as CVE-2022-30190. It affects Office 2013, Office 2016, Office 2021, and Office Pro Plus, among other versions.

The high-severity bug has been fixed by Microsoft. To be completely secure, it is recommended that companies diligently apply the patch. There are some alternatives available, such as deactivating the MSDT URL protocol and using Defender ASR rules to prevent Office programmes from starting child processes. From July onwards, Microsoft will urge customers to migrate to Windows Autopatch, which will simplify the product update process for Windows 10 and 11 users. Read More…