Bugging Microsoft Files: Part 1 – Docx Files using Microsoft Word
Summary
This article introduces a technique for creating web tracking software using .docx files renamed as .doc files within Microsoft Word. It builds upon a known method of using .html files for similar tracking purposes.
IFF Assessment
FOE
The article describes a method that could be used for malicious tracking, which is detrimental to defenders.
Defender Context
Defenders should be aware of techniques that allow for covert tracking via seemingly innocuous document files. This could be exploited to exfiltrate user activity or credentials, especially if users are tricked into opening specially crafted .docx files.