Security News > 2017 > November > Russian 'Fancy Bear' Hackers Using (Unpatched) Microsoft Office DDE Exploit
2017-11-09 01:07
Cybercriminals, including state-sponsored hackers, have started actively exploiting a newly discovered Microsoft Office vulnerability that Microsoft does not consider as a security issue and has already denied to patch it. Last month, we reported how hackers could leverage a built-in feature of Microsoft Office feature, called Dynamic Data Exchange (DDE), to perform code execution on the
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/NJpDug3pK2o/apt28-office-dde-malware.html
Related news
- Microsoft Office 2024 now available for Windows and macOS users (source)
- Microsoft and DOJ disrupt Russian FSB hackers' attack infrastructure (source)
- Microsoft Is Disabling Default ActiveX Controls in Office 2024 to Improve Security (source)
- Hackers targeting WhatsUp Gold with public exploit since August (source)
- Microsoft rolls out Office LTSC 2024 for Windows and Mac (source)
- Microsoft: Vanilla Tempest hackers hit healthcare with INC ransomware (source)
- Hackers Exploit Default Credentials in FOUNDATION Software to Breach Construction Firms (source)
- Chinese Hackers Exploit GeoServer Flaw to Target APAC Nations with EAGLEDOOR Malware (source)
- A Hacker's Era: Why Microsoft 365 Protection Reigns Supreme (source)
- 100+ domains seized to stymie Russian Star Blizzard hackers (source)