The National Bank of Ukraine (NBU) sent out the telegram to all financial institutions, particularly to the commercial banks where it warns about the possible cyber-attack on August 24 when Ukraine will celebrate the Independence Day. The UBR.ua reported this citing the telegram of the National Bank.
‘The virus is spread with the mail out with the code masked under the Microsoft Word documents. Any antivirus software cannot define the document as the document with malicious code as at August 10, 2017’, the telegram noted.
The Security Department of the NBU warned the charges that this virus is a modified exploit of insecurity of the software Microsoft Word CVE-2015-2545.
The main danger is that any antivirus software cannot see the threat in the new program. The NBU emphasized that the new virus uses the uncommon insecurity of Microsoft Word CVE-2015-2545 system that allows to the virus to use the arbitrary code at the computer and receive the complete control over the Windows computer.
The officials urged the banks to immediately take steps that will allow removing the mentioned insecurity installing the certain bug patch worked out by Microsoft Company.
A large-scale cyber attack hit dozens of companies and enterprises across Ukraine on June 27. All of the companies were attacked by the same virus. Cyber protection experts pointed out it is mbr locker 256 malware, a blackmailing virus, demanding from users to send money in exchange for decryption of the encrypted data.