"A bug in Word apparently targeted by scammers trying to steal banking logins will be patched, Microsoft has said.
The previously undetected, or "zero-day", vulnerability had been reported over the weekend.
Then, on 10 April, cybersecurity firm Proofpoint
announced it had discovered an email campaign targeting the bug that aimed to distributed Dridex malware.
Dridex is designed to infect a victim's computer and snoop on banking logins.
In 2015, it was cited as the means by which cyber-attackers stole
more than £20m from British bank accounts.
The
flaw discovered in many versions of Microsoft Word for Windows could
allow malicious software, including Dridex, to be installed, according
to cybersecurity researchers."
