Pirated Microsoft Office

0 views
Skip to first unread message

Charise Scrivner

unread,
Aug 3, 2024, 11:59:54 AM8/3/24
to gratihbidys

During that time I was advised by the sales person to get the pirated Microsoft as it won't do harms to my macbook and it will save extra wages rather. Therefore i've listened to him and get my macbook a pirated version. Now that I'm already working my office will provide us licensed Microsoft 365.

The reason I am so keen to uninstall it is because i realized that it has causes lots of problem to my macbook. My safari starting to lag and new tab keep opening it self (extremely annoying) my research in words can't autosave it self and a shortcut of the file keep saving it self. I a so worried that my macbook system is going down and the performance may frustrates me in a way. I have a very high expectation with Apple product and it was such a mistake to install a pirated version of Microsoft rather the licensed its so expensive that i couldn't afford it.

Im in terrible dilemma. Please help me to give suggestions and steps i shall perform to get my macbook to function at its best again. Your time and generous help on this issue are much appreciated.

Microsoft is a company. It cannot be pirated. If you mean Microsoft Office, that is a product, and can be pirated, but its unlikely to be causing issues with Safari, or general slowness of your machine.

Nobody said it would solve your problem. Etrcheck is a diagnostic tool, it will allow us to see what is going on with your computer, and let us offer some advice on how to fix the slowness and other issues you are experiencing.

It won't, and there is no point in running it. Stop taking advice from strangers to run unknown software. Pirated commercial software is usually, if not always, infected with malware, and there's ample evidence in your original post that you have been infected. The only way you can be sure that the machine is safe to use is to erase the startup volume and restore from a backup that predates the installation:

Allow me to correct you, the Etrecheck report is just that, a report, not software as commonly defined. Unless you are familiar with jass92, are you not yourself a stranger as well? If not, enlighten us all.

Even if it seems like too much of a financial outlay, year-after-year, to pay for the subscription service, for example, of Microsoft 365, you should not ever be tempted to opt for a free download of Office, or Microsoft 365, or any other dubious, potentially pirated copy.

If you wonder if Microsoft will know, we guarantee they will. Each genuine download of MS office has a product key, which the company track with ease, allowing one IP address for a single installation. If the same IP address is used again, or multiple times, they can see this and know a pirate version is being used.

You have no way of knowing what is hidden in illegitimate software. Cybercriminals will often hide malware in pirate software, which have grave consequences for your system. Your activity could be tracked, with personal details being stolen or your system suspended for ransom. Using pirate software poses a giant risk to your security and that of your business, and customers.

Office 365 is easy and quick to install, use and get up and running with, for most, if not all, of your business functions. The fears and risks associated with pirate software need be of no concern and you can operate your business and all online activity with confidence and assurance.

South Korean researchers have observed the malicious use of pirated copies and cracked activators of legitimate productivity and office utility programs such as Hangul Word Processor and Microsoft Office to disguise malicious programs.

Researchers from AhnLab discovered that attackers have been creating and distributing malicious copies of popular utility software. These copies were distributed through common file-sharing platforms and torrent websites. The operation takes advantage of users looking to obtain free copies of software without paying the required license fee.

When downloaded and executed, the programs usually appear as convincing cracked installers or activators for programs such as Microsoft Office or the Hangul word processor. While the initial downloader was developed in .NET, the attackers appear to have moved to more obfuscated attack techniques.

The malware retrieves its instructions for the next stage of its attack from Telegram or Mastodon channels operated by the attackers. These channels contain encrypted Base64 strings that lead to Google Drive or GitHub URLs that host the malicious payloads.

The commands include an updater that contains instructions to maintain persistence over the system through the use of the native Windows Task Scheduler present on the Windows operating system. C&C server addresses shared by the researchers also indicate that they have been disguised as a minecraft rpg server.

The researchers said the number of systems that had been compromised in these attacks continued to increase as the registered task scheduler entries loaded additional malicious components on affected systems despite the removal of previous underlying malware.

The researchers advised South Korean users to download software and programs from their official sources rather than file-sharing sites. Users who suspect that their systems may already have been infected should remove associated task scheduler entries to block the download of additional malware components, and update their antivirus software to the latest available versions.

The researchers have additionally shared indicators of compromise, categories that have been detected as flagged in the attack, MD5 hashes of files used in the attack, associated C&C server addresses, and suspicious behaviors that have been observed during the attack.

Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.

Suhail Khalid is a cybersecurity professional with a Master of Science in Information Technology (Cyber Security). With a passion for ensuring robust information security practices, Suhail brings extensive expertise to his role at the Dubai Electronic Security Center.

As a Lead Auditor ISO/IEC 27001 Information Security certified professional, Suhail has demonstrated proficiency in implementing and managing information security management systems (ISMS). His meticulous approach to auditing ensures compliance with the ISR controls and related information security best practices , providing organizations with the assurance needed to safeguard their sensitive data.

With over 8 years of experience as an ISR (Information Security Regulation) auditor, Suhail has played a pivotal role in assessing and enhancing the security posture of various government entities. His in-depth understanding of regulatory requirements enables him to effectively evaluate and mitigate cybersecurity and information security risks, ensuring compliance with industry regulations and standards.

Eng. Dina Al.Salamen is the Vice President and Head of Cyber and Information Security. She has worked for international organizations including Arab Bank and Bank ABC for more than 17 years. Recently, she has been selected to be part of EC-Council International Advisory Board (CISO Program).
She also gives keynote speeches on cybersecurity and has a genuine love for innovative technologies such as blockchain, big data, and artificial intelligence. She took part in a number of international conferences, including LEAP 2024 in Riyadh, Blackhat MEA 2023 in Riyadh, MENA Cyber Security Summit in Riyadh, and GISEC 2023 in Dubai.

She has been specializing in information security for more than 20 years now and her experience is augmented by several leadership roles in both public and private sectors, including Financial, Telecom, Public Sector, Consulting firm, Energy sector and other State-owned entities. She

Sithembile is also a mentor, international speaker and serving as an advisory board member. She is passionate about cybersecurity and enabling organisations to achieve their business objectives in a secure manner to fulfil their mandates. Besides her extensive experience in other information/cyber security domains, she has also played a pivotal role in defining and implementing robust information security strategies to protect organisations against the increased attack surface, in support of the swift digital migration initiatives and hybrid mode of working, including artificial intelligence and machine learning.

In her current capacity, she is responsible for developing Standards and Policies related to Cyber Security in alignment with the Dubai Cyber Security Strategy. Having worked in various government and federal entities in the UAE, Irene has contributed to Cybersecurity strategic planning and mapping of local standards against international standards.

Irene is a Co-founder of the Women in Cyber Security Middle East (WiCSME) and is highly engaged in activities supporting and mentoring women and girls in their professional growth. She has received several accolades locally, regionally, and internationally.

Ellis, the Managing Director of AsiaGulf Synergy Ventures, brings over 30 years of executive experience and excels in digital technology leadership for business growth. Focused on leveraging Asian tech solutions for Gulf market expansion, he aims to establish holistic business ecosystems and craft integrated investment strategies. With a versatile background spanning CTO to CEO roles in renowned international firms such as Intel, Mashreq Bank, Alibaba, Google, and McKinsey, Ellis is recognized for driving digital transformation across diverse industries, including digital banking, eCommerce, EV, and Flying Car technologies.

Ahmed Nabil has more than 20 years of experience in the field of Information Security, Technology/Systems, Infrastructure, Project Management, Cyber Defense, Application Automation, Cloud Architecture, IT management and holds several professional certifications from Microsoft, CISCO, ISACA, ISC2, PMI, IAPP, CWNP, PECB, CSA and EC- Council.

c80f0f1006
Reply all
Reply to author
Forward
0 new messages