Our Malware Research team is seeing the (recently patched) Microsoft MDAC RDS.Dataspace ActiveX vulnerability being exploited to install a backdoor Trojan on to user’s machines.
While attacks exploiting this vulnerability currently appear limited in number, the threat still exists. If you have not yet applied security patches from Windows Update within the past two months, you are putting yourself at serious risk for infection.
Adam Thomas
Malware Research
(Hat tip to our friends at MAD and Lance James at Secure Science Corp.)