Microsoft states that their Defender for Endpoint products protect against CVE-2021-40444 (MSHTML). Do we have the same protection in Intercept X products?
Robert - Labs is working on this actively - you can follow twitter updates here: https://twitter.com/SophosLabs/status/1435368778200666112?s=20
Here is also some guidance from Paul Ducklin: https://nakedsecurity…
I would also like to know if there is a query we could run for this?
I am going to work on my own but figured someone more savvy may beat me to it.
Something where folderpath is mshtml.dll and initiating process maybe winword.exe