{"id":29594,"date":"2019-10-08T23:21:43","date_gmt":"2019-10-08T23:21:43","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/"},"modified":"2019-10-08T23:21:43","modified_gmt":"2019-10-08T23:21:43","slug":"you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/","title":{"rendered":"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff"},"content":{"rendered":"<p><strong class=\"trailer\">Patch Tuesday<\/strong> October brings a relatively light patch load for admins and users, thanks to Adobe&#8217;s decision to sit out this month&#8217;s update bonanza.<\/p>\n<h3 class=\"crosshead\"><span>Cloudy patch bundle from Microsoft<\/span><\/h3>\n<p>For Microsoft, the Patch Tuesday update is a manageable 59 CVE-listed bugs for Windows, Edge, Office, and Azure.<\/p>\n<p>Among the nine critical issues patched this month is <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1372\">CVE-2019-1372<\/a>, a flaw in Azure that allows end-users running on virtual machines to send and execute code on the host machines.<\/p>\n<p>This is particularly bad because it is, in essence, both an elevation of privilege bug and a remote code execution vulnerability.<\/p>\n<p>&#8220;An attacker could use this vulnerability to have an unprivileged function run by a user execute code at the level of System. That provides an attacker a nifty sandbox escape,&#8221; <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/www.zerodayinitiative.com\/blog\/2019\/10\/8\/the-october-security-update-review\">explained<\/a> Dustin Childs of the Trend Micro ZDI.<\/p>\n<p>&#8220;Microsoft gives this an &#8216;Exploitation Less Likely&#8217; Exploit Index rating, but if you use the Azure App Service, don\u2019t depend on that and do apply the patch.&#8221;<\/p>\n<p>Aside from the Azure flaw, October&#8217;s update addresses many of the usual security holes in Microsoft&#8217;s offerings. Seven critical fixes address remote code execution flaws in the Chakra and VBScript tools that can be exploited through a poisoned web page.<\/p>\n<p>The remote desktop client continues to be an area of concern, thanks to <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1333\">CVE-2019-1333<\/a>. That flaw allows a bad actor to achieve remote code execution by tricking the mark into connecting to a malicious server.<\/p>\n<p>While Microsoft doesn&#8217;t usually consider Office bugs to be critical, admins should also pay special attention to those flaws, including <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1327\">CVE-2019-1327<\/a>. An attacker would be able to get remote code execution by tricking the user into opening a poisoned file.<\/p>\n<p>Considering how often users in a business setting will open Excel spreadsheet attachments without a second thought, we would argue this flaw is just as dangerous as any browser-based flaw.<\/p>\n<p>Windows 10 Mobile also got in on the Patch Tuesday fun this month, as the platform was subject to <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1314\">CVE-2019-1314<\/a>. The security bypass flaw lets users work around the Cortana lock screen to access a device.<\/p>\n<p>&#8220;Although Microsoft details the bug, they aren\u2019t fixing it. Instead, they recommend users of Windows 10 Mobile disable Cortana on the lock screen,&#8221; explained Childs.<\/p>\n<p>&#8220;If your organization uses devices with this OS, start rounding them up to make the change.&#8221;<\/p>\n<h3 class=\"crosshead\"><span>No Adobe fixes, but Android needs patching<\/span><\/h3>\n<p>Notably absent this month is Adobe. The media giant has opted not to post any fixes for Flash, Reader, Acrobat, or any of its other offerings. The most recent Adobe release was the <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2019\/09\/25\/coldfusion_patches_adobe\/\" rel=\"noopener noreferrer\">September 25 update<\/a> for ColdFusion.<\/p>\n<p>Meanwhile, there is a late-arriving monthly patch from Google for Android. The mobile platform has received a <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/source.android.com\/security\/bulletin\/2019-10-01\">number of fixes<\/a>, most notably patches for three remote code execution bugs in the media framework that allow attacks via poisoned files.<\/p>\n<p>Those who have Google-branded devices can get the Android updates directly from the Chocolate Factory, while others will have to wait for their device vendor or carrier to get around to releasing the patch.<\/p>\n<h3 class=\"crosshead\"><span>Eight patches from SAP<\/span><\/h3>\n<div class=\"promo_article\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2019\/10\/07\/shutterstock_catalina_island.jpg?x=174&amp;y=115&amp;crop=1\" width=\"174\" height=\"115\" alt=\"Catalina island\"><\/p>\n<h2 title=\"New OS squashes bugs, older versions may have to wait\">MacOS &#8216;Catalina&#8217; 10.15 comes packed with exclusive security fixes \u2013 gee, thanks, Apple<\/h2>\n<p><a href=\"https:\/\/www.theregister.co.uk\/2019\/10\/07\/apple_catalina_security\/\"><span>READ MORE<\/span><\/a><\/div>\n<p>SAP, on the other hand, was more than happy to take part in this month&#8217;s Patch Tuesday. The enterprise software powerhouse <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/wiki.scn.sap.com\/wiki\/pages\/viewpage.action?pageId=528123050\">released patches<\/a> for eight CVE-listed flaws.<\/p>\n<p>Among the most serious were CVE-2019-0379, a security bypass bug thanks to a missing authentication check in NetWeaver and CVE-2019-0380, an information Disclosure bug in SAP Landscape Management.<\/p>\n<p>Admins are advised to test and install all of the patches as soon as possible.<\/p>\n<p>While October saw a reduced patch load thanks to the absence of Adobe and Google, those who dragged their feet on the updates for <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2019\/10\/07\/apple_catalina_security\/\" rel=\"noopener noreferrer\">MacOS<\/a> and <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2019\/10\/04\/cisco_patches\/\" rel=\"noopener noreferrer\">Cisco<\/a> may have those patches to install on top of today&#8217;s bundle. \u00ae<\/p>\n<p class=\"wptl btm\"><span>Sponsored:<\/span> <a href=\"https:\/\/go.theregister.co.uk\/tl\/1858\/-7802\/technical-overview-exasol-peek-under-the-hood?td=wptl1858\">Technical Overview: Exasol Peek Under the Hood<\/a><\/p>\n<p>READ MORE <a href=\"http:\/\/go.theregister.com\/feed\/www.theregister.co.uk\/2019\/10\/08\/october_patch_tuesday\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>On the bright side, nothing from Adobe to install this month Patch Tuesday\u00a0 October brings a relatively light patch load for admins and users, thanks to Adobe&#8217;s decision to sit out this month&#8217;s update bonanza.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":29595,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-29594","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-10-08T23:21:43+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/10\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"174\" \/>\n\t<meta property=\"og:image:height\" content=\"115\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff\",\"datePublished\":\"2019-10-08T23:21:43+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/\"},\"wordCount\":663,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/10\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/\",\"name\":\"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/10\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg\",\"datePublished\":\"2019-10-08T23:21:43+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/10\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/10\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg\",\"width\":174,\"height\":115},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/","og_locale":"en_US","og_type":"article","og_title":"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-10-08T23:21:43+00:00","og_image":[{"width":174,"height":115,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/10\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff","datePublished":"2019-10-08T23:21:43+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/"},"wordCount":663,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/10\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/","url":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/","name":"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/10\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg","datePublished":"2019-10-08T23:21:43+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/10\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/10\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff.jpg","width":174,"height":115},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/you-know-the-deal-october-2019-pwned-by-a-spreadsheet-patch-your-microsoft-stuff\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"You know the deal: October 2019. Pwned by a spreadsheet. Patch your Microsoft stuff"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/29594","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=29594"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/29594\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/29595"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=29594"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=29594"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=29594"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}