Microsoft researchers reveal a new way hackers can access users’ data
Researchers at the Microsoft Malware Protection Center have recently uncovered a new type of malware threat that makes use of Word documents with malicious code, with no need to actually install traditional malware. The malware is propagated through spam emails that have an infected .docx attached; the document contains an embedded objects which, if clicked, leads to a malicious code being executed. The code is used to change the user’s browser Proxy Server settings, allowing for the monitoring of the HTTPS encrypted content and traffic, and subsequently, to the theft of authentication credentials or other sensitive information.