9916126125 info@stratops.in

 

Awareness required:

Users be cautious when using Microsoft Office application (Word, Excel, Outlook, etc.,). If you are ever shown the below message when opening a document (Word, Excel, PPT, etc.,)

Click “No

In case you clicked “Yes”, it will ask again below your permission to execute a command

Click “No

Congratulations, you just averted a possible Microsoft Office DDE zero day attack

 

Technical

From Microsoft: Windows provides several methods for transferring data between applications. One method is to use the Dynamic Data Exchange (DDE) protocol. The DDE protocol is a set of messages and guidelines. It sends messages between applications that share data and uses shared memory to exchange data between applications. Applications can use the DDE protocol for one-time data transfers and for continuous exchanges in which applications send updates to one another as new data becomes available.

An attacker can format a document/email message or a calendar invite in rich text format (RTF)  such that the DDE is executed without aware of the code being embedded.

For more detailed technical understanding you can refer the below link

https://www.techrepublic.com/article/nearly-undetectable-microsoft-office-exploit-installs-malware-without-an-email-attachment/?bhid=20955722865275723007847472176087&ftag=TREa988f1c

 

We have spread the word of awareness to our clients and customers, in case you require our Information security services, get in touch with us.

We strongly recommend you to subscribe to our blog to keep yourselves updated on important issues and information we share.

Please follow and like us: