Duration 10:15

Can a Spreadsheet Really Destroy Your Computer

17 789 watched

0

1.2 K

Published 20 May 2021

Can opening the wrong document really destroy your computer? We explore what could happen if a malicious office macro is lurking a document you open. -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Our Site → https://www.hak5.org Shop → http://hakshop.myshopify.com/ Subscribe → /user/Hak5Darren Support → https://www.patreon.com/threatwire Contact Us → http://www.twitter.com/hak5 Threat Wire RSS → https://shannonmorse.podbean.com/feed/ Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Kody Kinzie → https://www.twitter.com/kodykinzie Host: Michael Raymond → https://www.twitter.com/the_hoid -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆

Category

Show more

Tags

Hak5

Hack

Technology

Darren kitchen

Shannon morse

Snubs

Hack5

Hacker

Comments - 100

@

@h-disconnected66123 years ago I love that y' all just set off a mortar on your porch. 13
@

@brianfreund13 years ago The quick not-so-hidden jokes in this are hilarious. Well done guys. 15
@

@bluegizmo19833 years ago Absolutely! If i could build a game with network multiplayer in a spreadsheet, you could surely do damage withyears ago when i was working at a company, i made a battleship boardgame style game in excel, with network multiplayer so you could play against other people at the company. ...Expand 13
@

@jmr3 years ago I wrote a spreadsheet that controlled three different printers and renamed files. I' m pretty sure someone with bad intentions could do worse. 12
@

@alansungki76873 years ago Lol this happened at my work. The whole office got sent a spreadsheet, i opened the file and realized it was malicious when it asked to enable macros so . ...Expand
@

@chrijuvaz48623 years ago Make a video about silent office exploit, which doesn' t need a user to enable macro feature and the payload executes once the user open the office document. 4
@

@stillchaos3 years ago I almost didn' t recognize you cody. U use to be the main mentor on hak5. Well good to see u back in the stream.
@

@YkComputer3 years ago In the world of linux and security anything can happen.
love your videos sir. 7
@

@suurlohe95993 years ago Thank you! Also the layouting and setup for the vid was werry good ty! 3
@

@coldblade6663 years ago Some of the more advanced malware can detect whether it is in a virtual environment now. Opening it on a burner computer may be a better option, even though most people don' t have something like that laying around.
@

@iyeetsecurity9223 years ago interviewer:" are you familiar with using microsoft excel and outlook? "
me:uh, yes. A little bit.
@

@sambanna19823 years ago Would of been nice to see how to inspect the macro' s? 2
@

@Jonathan_Henderson3 years ago Another brilliant video hak5. Loving the collabs with null byte.
@

@thefatmoop3 years ago Kills me that in electrical engineering, pdfs are the defacto standard. Nothing more fun than opening very questionable pdfs on production machines. 1
@

@GL455_3 years ago Lol that russian google translation was really a true horror! Xd lol.
@

@theBrightman3 years ago So are hak5 and nullbyte a single thing now? Did i miss something? 2
@

@yosefbernal3 years ago Nowadays you can use windows sandbox to quickly get an vm instance of windows. I think you might need windows pro for this though.
@

@vishals25763 years ago Looks like you guys destroyed a gopro while filming the explosion. Great job guys btw.
@

@happysprollie3 years ago Good vid, but did you screw up the live audio? Looks like you looped it later.
@

@_BangDroid_3 years ago Am i meant to be afraid or laughing at the goofy caricature of russian hackers? 3
@

@suyashc3 years ago I think easiest solution is to open such spreadsheets on google spreadsheet rather than using local software(ms office)
@

@Meleeman0113 years ago That hacker isn' t wearing a mask for corona. Lolol.
@

@tzisorey3 years ago In all fairness, even if macros etc. Were completely and 100% risk free, i' d advocate for telling people not to open documents they weren' t expecting . ...Expand
@

@DoryanTheCritic3 years ago Since when did cody become a hak5 member? I thought he had his own thing (null byte)
@

@UNcommonSenseAUS3 years ago So all microsoft docs, word, docx, amp; pdf are potentially affected? 2
@

@erikdz49383 years ago Microsoft recently did a crackdown on this. Now, creating any shell object on the vbscript of a msoffice file, will trigger av. Regardless wether it' s outlook or not. Test it out for yourselves.
@

@stillchaos3 years ago Its always good to be suspicious of anything that needs to be clicked in a email or doc. If u can not verify that it' s legit. Treat it like a contagious disease.
@

@ahrenbader-jarvis23173 years ago " boring white void of an excel file" i' m not sure you know your audience. I' m sure i' m not the only one who gets excited about sp . ...Expand
@

@spoozy6663 years ago Damn the russian references are fun lmao.
@

@peterkim96963 years ago Are malicious excel files work on android?
@

@ChristianJackson473 years ago The furry hacker community will not stand for this personal attack on micheal (hope i spelled that right lol) watch out hak5, dedfursec will be coming ps, i' m a kittyscripter at best so rawr, watch out~
pss i do love ya' lls vids enough i guess i will excuse this attack just once until i actually learn how to be more than just a kittyscripter and hopefully become an ethical one myself one of these days ^_^. ...Expand
@

@Jan-nu6zc3 years ago There is some meme potential with that russain hacker.
@

@kenny-kvibe3 years ago It seems like macros are just vbs files with some triggers that execute them, i don' t know why people don' t educate their selves before doing a i always disable the app' s internet access (via firewall rules) if i know it doesn' t need it, like in real example: ms calc doesn' t need it but yet it still has access.
if you have time to meditate, then meditate for 10 mins, but if you don' t have time to meditate, then meditate atleast for 1 hour, the choice is always yours.
anyway i never used macros in any spreadsheets, because i use python to create the spreadsheets for me, and i suggest people use libreoffice because in this case it would alert you upon opening the document that it has macros that contain viruses, and then you' d need to add a trusted file location to use it or by disabling the security of macros. ...Expand
@

@KoRokjd3 years ago Do you make them cut away when you blink.
@

@TheRealZamFit3 years ago Need to find a pic of putin in a furry suit. 1
@

@williamjames03 years ago Hi people, could someone please explain to me how to do this? Thanks. 1
@

@maxthecomputerfox22153 years ago Love the michael is a furry and the russian skit.
@

@neeleshpatel93123 years ago The stickkkkersssss. ;(
@
@

@talio-54693 years ago I think i would want that booby excel file.
@

@shaburusyntax3853 years ago Well if you get hacked, we' ll know which country did it.
@

@exploit_avr47073 years ago Yea its basically bash scripting working with macro' s.
@

@suyashc3 years ago People using linux and don' t have microsoft office: we don' t care.
@

@robmorgan12143 years ago " so, how do you
step one download linux.
@

@eliyatos8113 years ago Hey bro i was looking your youtube channel. You have almost 700k subscriber but your videos don' t have that much view. Why?
i think id="hidden13" you bought thosecan you tell me the secret behind this. ...Expand 1
@

@kishorebolt30653 years ago Is there a way to exploit linux os with macros? 1
@

@DoryanTheCritic3 years ago His mouth doesn' t match with the audio.
@

@lowlightevangelist94313 years ago Matthew 4: 17 (kjv) from that time jesus began to preach, and to say, repent: for the kingdom of heaven is at hand.
@

@TheRealZamFit3 years ago Best one yet! Nice to have learned the identity of kodys secret crush.