Windows malware spread via Excel in email

[DelJo63]

Here we go again -- Office Suite macros being used to bypass security.

ZDNET.com is reporting, According to Microsoft's Security Intelligence team, the campaign "employs a complex infection chain to download and run the notorious FlawedAmmyy [remote-access trojan] RAT directly in memory."​

see the article for details:
https://www.zdnet.com/article/micro...are-spread-via-excel-in-email-with-bad-macro/

 

[DelJo63]

In December 2017, Microsoft disabled DDE support in Word by default but left the feature active in Excel, where it's most likely to be used for legitimate purposes, other than malware distribution.

Instructions on how to disable DDE in Excel are available in Microsoft's KB4053440 advisory.