Computerworld

Surprise! Excel gets a variation of the Word DDE block settings

You may recall that Microsoft disabled automatic Dynamic Data Exchange (DDE) in Word back in December. I wrote about the problem and its solution in “Office as a malware delivery platform: DDE, ...
Threat Post

New Microsoft Excel Attack Vector Surfaces

Researchers have identified security hole in Microsoft Office’s Excel spreadsheet program that allows an attacker to trigger a malware attack on remote systems. A feature in Microsoft Office’s Excel ...
Threat Post

Microsoft Provides Guidance on Mitigating DDE Attacks

Microsoft published guidance for Windows admins on how to safely disable Dynamic Data Exchange (DDE) fields in Office that are being used to spread malware in email-based attacks. Despite a rash of ...
Dark Reading

New Exploit for Microsoft Excel Power Query

Organizations now have one more reason to pay attention to the security settings of their Microsoft Office applications. Researchers at Mimecast have developed a working proof of concept that shows ...