|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
Mimecast shows yet another way to zap systems using Excel’s Power Query feature
Early this morning, email security company Mimecast released a report detailing how malicious folks can attack by abusing the Excel feature called Power Query:
Mimecast Threat Center found and developed a technique that uses a feature in Microsoft Excel called Power Query to dynamically launch a remote Dynamic Data Exchange (DDE) attack into an Excel spreadsheet and actively control the payload Power Query.
The threat they describe isn’t unique — if you’ve been working with Excel for any time at all, you know there are features that just beg to be abused — but it is quite clever.
The folks at Mimecast gave Microsoft a chance to respond, but
Mimecast worked with Microsoft as part of the Coordinated Vulnerability Disclosure (CVD) process to determine if this is an intended behavior for Power Query, or if it was an issue to be addressed. Microsoft declined to release a fix at this time and instead offered a workaround to help mitigate the issue.
Thus, we’re getting a full exposure. For more details, look at Mimecast’s report.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
To Susan – Woody Leonhard, the โLionheartedโ
by 2 hours, 14 minutes ago
-
Extracting Data From All Sheets
by 3 hours, 50 minutes ago
-
Use wushowhide in Windows 11 24H2?
by 3 hours, 58 minutes ago
-
Hacktool:Win32/Winring0
by 3 hours, 45 minutes ago
-
Microsoft Defender as Primary Security Question
by 4 hours, 25 minutes ago
-
USB printers might print random text with the January 2025 preview update
by 6 hours, 28 minutes ago
-
Googleโs 10-year-old Chromecast is busted, but a fix is coming
by 16 hours, 4 minutes ago
-
Expand the taskbar?
by 15 hours, 55 minutes ago
-
Gregory Forrest โWoodyโ Leonhard (1951-2025)
by 25 minutes ago
-
March 2025 updates are out
by 4 hours ago
-
Windows 11 Insider Preview build 26120.3380 released to DEV and BETA
by 1 day, 9 hours ago
-
Update Firefox to prevent add-ons issues from root certificate expiration
by 1 day, 16 hours ago
-
Latest Firefox requires Password on start up
by 1 day, 11 hours ago
-
Resolved : AutoCAD 2022 might not open after updating to 24H2
by 2 days, 5 hours ago
-
Missing api-ms-win-core-libraryloader-11-2-1.dll
by 1 day, 4 hours ago
-
How Much Daylight have YOU Saved?
by 1 day, 7 hours ago
-
A brief history of Windows Settings
by 1 day, 1 hour ago
-
Thunderbolt is not just for monitors
by 23 hours, 38 minutes ago
-
Password Generators โ Your first line of defense
by 1 day, 5 hours ago
-
AskWoody at the computer museum
by 4 hours, 54 minutes ago
-
Planning for the unexpected
by 1 day, 6 hours ago
-
Which printer type is the better one to buy?
by 2 days, 7 hours ago
-
Upgrading the web server
by 2 days, 5 hours ago
-
New Windows 11 24H2 Setup – Initial Win Update prevention settings?
by 3 days ago
-
Creating a Google account
by 2 days, 23 hours ago
-
Undocumented “backdoor” found in Bluetooth chip used by a billion devices
by 3 days, 6 hours ago
-
Microsoft Considering AI Models to Replace OpenAIโs in Copilot
by 3 days, 17 hours ago
-
AI *emergent misalignment*
by 3 days, 18 hours ago
-
Windows 11 Disk Encryption/ Bitlocker/ Recovery Key
by 2 days, 2 hours ago
-
Trouble signing out and restarting
by 1 day, 1 hour ago
