神刀安全网

NSA Using Insecure Word Macros

NSA Using Insecure Word Macros

There’s an interesting message in the documents about Snowden that Vice magazine got out of the NSA with a FOIA request. At least in 2012, the NSA was using Word macros internally

Posted on June 13, 2016 at 7:01 AM • 3 Comments

Comments

Vesselin BontchevJune 13, 2016 8:15 AM

To see what can be done with RTF files if they are opened with Word (instead of with WordPad), take a look at this proof-of-concept:

http://bontchev.my.contact.bg/poc.rtf

Open it with Word. Preferably with macros ("content") enabled – RTF files can’t contain macros, right? Right? Oh, wait…

Also, monitor Word’s connections to see it contacting my site when it opens the document – this can be used to implement the beacon functionality Nicholas Weaver is talking about.

So I googled "microsoft word tracking beacon" and the first hit was an article from August 2000.

Only Hindu gods have enough hands for adequate facepalm.

FBI was doing the same thing 4 years ago. Didn’t do much with Word there, but we used Outlook macros to handle putting classification markings on emails.

NSA Using Insecure Word Macros

Leave a comment

← Friday Squid Blogging: Beautiful Squid Sculpture

Photo of Bruce Schneier by Per Ervland.

Schneier on Security is a personal website. Opinions expressed are not necessarily those of Resilient, an IBM Company.

转载本站任何文章请注明:转载至神刀安全网,谢谢神刀安全网 » NSA Using Insecure Word Macros

分享到:更多 ()

评论 抢沙发

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址