Defenses against the Word Zero Day

If you have heard there is a new zero day attack on Word that has been sighted at one company in the world.
To protect yourself, you may want to consider the following


  1. When you receive an email, IM, Fax, telephone call or someone comes to your door, call them and make sure they really intended to communicate with you. Don’t be fooled. You may wish to use a turing test to verify you are speaking to a human
  2. Roll out PKI so you can sign all your messages. That way no one can get away with sending the exploit as you.
  3. Switch to a VT200 terminal hooked to a VAX running VMS.
  4. Three words – Precautionary Internet Disconnect.
  5. Quarantine all email messages 5-7 days to allow antivirus vendors to catch up.
  6. Set up fans to disperse smoke. After you take away all other means of communication users may resort to smoke signals to communicate. WE HAVE NOT VERIFIED THAT THE WORD VULNERABILITY CANT SPREAD THROUGH SMOKE SIGNALS!


SANS actual recommendations are here. They seem about as useful as my joke recommendations.
Zero day vulnerabilities and targeted attacks are here to stay. Research into technology that provides proactive defenses is extremely important.