Microsoft to Block Excel XLL Add-Ins to Stop Malware Delivery
If you've been the victim of a phishing email containing a Microsoft Office add-in, you're in luck.
The security expert also added that the recent rise in the spread of malicious Microsoft add-ins is possibly connected to the recent hardening of macros implemented by Microsoft in the Office Suite last year. According to Dave Storie, adversarial collaboration engineer at Lares Consulting , the abuse of Microsoft add-ins by adversaries is a technique that has been used by threat actors for years to execute malicious code. Microsoft has announced plans for its 365 customers to automatically block all XLL add-in files downloaded from the internet to prevent phishing attacks relying on these types of lures.
Source read time: 1 min - infosecurity-magazine.com
Also offered in: Nederlands