Microsoft warns Windows users of hacking attack through MS Office, shares tips on how to be safe

Microsoft has issued a vulnerability report acknowledging a security risk with MSHTML that lets attackers download malware onto a victim's computer through corrupted Office files. The report also shares some known ways to mitigate the attack.

Those using any version from Windows 7 to Windows 10 are at risk of a cyber-attack that uses malicious Office files. Exploiting a security loophole, attackers are able to download malware onto a victim's computer through corrupt Office files. Microsoft has now acknowledged the security risk in a recent report and is investigating it. In its report, Microsoft acknowledged the vulnerability to be a level - 0, meaning that it is being actively exploited by attackers and is considered as a "highest priority" risk for the users. As for what it is, the security risk lies with Microsoft HTML that allows remote code execution by an attacker.