Millions of Microsoft Excel users vulnerable to remote DDE attack as new exploit is discovered

Security researchers from Mimecast Threat Center have discovered an Excel exploit that could leave 120 million users vulnerable to attack. The security flaw means that it is possible to use Excel's Power Query tool to dynamically launch a remote Dynamic Data Exchange (DDE) attack on a spreadsheet and actively control the payload. The researchers also found that Power Query could be used to embed malicious code in a data source and spread malware. See also: Security flaw in Dell SupportAssist tool puts millions of Windows systems at risk Over half of enterprises think security is lagging behind cloud adoption Netflix… [Continue Reading]