|
Patch reliability is unclear, but widespread attacks make patching prudent. Go ahead and patch, but watch out for potential problems. |
-
DDEAUTO vulnerability evolving
Further to recent news on DDEAUTO vulnerability, this threat has, like all good malware, evolved.
From nakedsecurity.sophos.com:
On Friday, independent reports surfaced showing that it’s possible to run DDE attacks in Outlook using emails and calendar invites formatted using Microsoft Outlook Rich Text Format (RTF), not just by sending Office files attached to emails.
In the original attack users had to be coaxed into opening malicious attachments. By putting the code into the email message body itself, the attack comes one step closer, meaning that the social engineering needed to talk a recipient into falling for it becomes easier.
The good news is that whether a DDE attack comes via an attachment or directly in an email or a calendar invite, you can stop the attack easily:
Just say noYou can read their article here
AdminITs might like to check out the Microsoft blog on ASR (Attack Surface Reduction), which is said to mitigate the risks – linked in the AdminIT Lounge topic “Enable Attack Surface Reduction in Win10-1709“.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
inetpub : Microsoft’s patch for CVE-2025–21204 introduces vulnerability
by 4 hours, 5 minutes ago
-
Windows 10 finally gets fix
by 12 hours, 59 minutes ago
-
AMD Ryzen™ Chipset Driver Release Notes 7.04.09.545
by 14 hours, 19 minutes ago
-
Win 7 MS Essentials suddenly not showing number of items scanned.
by 8 hours, 52 minutes ago
-
France : A law requiring messaging apps to implement a backdoor ..
by 1 day, 3 hours ago
-
Dev runs Windows 11 ARM on an iPad Air M2
by 1 day, 4 hours ago
-
MS-DEFCON 3: Cleanup time
by 49 minutes ago
-
KB5056686 (.NET v8.0.15) Delivered Twice in April 2025
by 23 hours, 37 minutes ago
-
How to enable Extended Security Maintenance on Ubuntu 20.04 LTS before it dies
by 1 day, 15 hours ago
-
Windows 11 Insider Preview build 26200.5562 released to DEV
by 1 day, 19 hours ago
-
Windows 11 Insider Preview build 26120.3872 (24H2) released to BETA
by 1 day, 19 hours ago
-
Unable to eject external hard drives
by 5 hours, 55 minutes ago
-
Saying goodbye to not-so-great technology
by 2 hours, 26 minutes ago
-
Tech I don’t miss, and some I do
by 23 minutes ago
-
Synology limits hard drives
by 2 days, 23 hours ago
-
Links from Microsoft 365 and from WhatsApp not working
by 2 days, 2 hours ago
-
WhatsApp Security Advisories CVE-2025-30401
by 3 days, 5 hours ago
-
Upgrade Sequence
by 2 days, 23 hours ago
-
Chrome extensions with 6 million installs have hidden tracking code
by 1 day, 4 hours ago
-
Uninstall “New Outlook” before installing 2024 Home & Business?
by 1 day, 21 hours ago
-
The incredible shrinking desktop icons
by 4 days, 2 hours ago
-
Windows 11 Insider Preview Build 22635.5240 (23H2) released to BETA
by 4 days, 4 hours ago
-
Connecting hard drive on USB 3.2 freezes File Explorer & Disk Management
by 1 day, 3 hours ago
-
Shellbag Analyser & Cleaner Update
by 20 hours, 53 minutes ago
-
CISA warns of increased breach risks following Oracle Cloud leak
by 4 days, 13 hours ago
-
Outlook 2024 two sent from email addresses
by 54 minutes ago
-
Speeding up 11’s search
by 2 days, 1 hour ago
-
HP Pavilion Will Not Wake Up After Being Idle for Longer Period
by 2 days, 13 hours ago
-
Make a Windows 11 Local Account Passwordless
by 5 days, 3 hours ago
-
Ubuntu 25.04 (Plucky Puffin)
by 5 days, 11 hours ago
Remembering Woody
