Microsoft provides guidance on migrating DDE attacks

There are a lot of attacks which use fields Dynamic data exchange in the office. It has significantly increased recently. Microsoft still insists that the DDE is a functioning and will not treat it as a vulnerability.

Microsoft has put some recommendations in the administrators on how to safely disable this feature using the new registry settings for Office last week. Attacks using DDE are also likely to be bypassed by antivirus programs and scanners, preventing intrusion, given that this is most likely a function with a whitelist.

Michael Mimoso gives a very detailed account of the Microsoft DDE-ATTACK SOFTWARE manual provided by Microsoft.

More.

DISCLAIMER: THIS POST IS FOR INFORMATIONAL PURPOSES ONLY AND IS NOT TO BE CONSIDERED LEGAL ADVICE ON ANY SUBJECT MATTER. DIGITAL FORENSICS CORP. IS NOT A LAWFIRM AND DOES NOT PROVIDE LEGAL ADVICE OR SERVICES. By viewing posts, the reader understands there is no attorney-client relationship, the post should not be used as a substitute for legal advice from a licensed professional attorney, and readers are urged to consult their own legal counsel on any specific legal questions concerning a specific situation.

News

Microsoft provides guidance on migrating DDE attacks

Read Next

USA Passes Take It Down Act: Fighting NCII at the Federal Level

Operation Artemis: FBI Arrests 22 in International Sextortion Crackdown

Digital Forensics Corp. Launches Pro Bono Initiative to Combat Sextortion Targeting Minors

Digital Forensics Corp. Launches 2025 Sextortion Study to Uncover the True Scope of a Growing Cybercrime