DDE Attack | Nipissing University Skip over navigation
[X] close
Switch Contrast

DDE Attack

You may or may not be aware of a new type of attack potential called a DDE attack - a way of launching malware from a web download, an email attachment, or even directly from the body of an Outlook email message or calendar invite.

Just say no

Attachments, emails and calendar invites pop up two giveway warning dialogs before triggering a DDEAUTO attack; if you say “No” at either dialog then you prevent the attack. 

First, you’ll see a warning like this when DDE is used:

outlook-dialog-box-11.png

Clicking “No” will stop a DDE attack from running.

If you click “Yes” at the first dialog, you will see a second dialog warning that a command is about to be run (the text in parenthesis and the program names referenced at the end will vary):

outlook-dialog-box-222.png

Again, clicking “No” will stop the attack.

For more information, please refer to the following page and video

https://nakedsecurity.sophos.com/2017/10/22/office-dde-attack-works-in-outlook-too-heres-what-to-do/




 

Stay Connected With Us!

Nipissing University
100 College Drive, Box 5002, North Bay, ON, Canada  P1B 8L7
Tel: 705.474.3450 | Fax: 705.474.1947 | TTY: 877.688.5507
nuinfo@nipissingu.ca
Brantford Campus
50 Wellington St.
Brantford, ON, Canada N3T 2L6
Tel: 519.752.1524 | Fax: 519.752.8372

© Nipissing University 2018DisclaimerPrivacyAccessibility