Microsoft patches Excel zero-day used in attacks, asks Mac users to wait

Microsoft has patched an Excel zero-day vulnerability exploited in the wild by threat actors.

Zero-days, as defined by Microsoft, are publicly disclosed bugs with no official security updates.

The vulnerability, tracked as CVE-2021-42292, is a high severity security feature bypass that unauthenticated attackers can exploit locally in low complexity attacks that don't require user interaction.

Read More