In the last two weeks, Sophos researchers have kept an eye on a vulnerability in Microsoft’s Dynamic Data Exchange (DDE) protocol used to send messages and share data between applications. Yesterday, new developments revealed an additional dimension to this attack. Early on, we noted that attackers could exploit DDE to launch malware via tainted Office attachments, for example in […]