[ Thanks to James
Maguire for this link. ]
“According to a pair of researcher presenting at the Black Hat
conference today, Microsoft Office is still at risk, despite
multiple security measure taken by Microsoft and others. Taiwanese
researchers Sung-ting Tsai (who also goes by the name TT) and
Ming-chieh Pan demoed multiple techniques to a live Black Hat
audience as proof of concept that they could exploit documents and
use them as delivery platforms for malware.“TT noted that document attachment are often used in Advanced
Persistent Threat (APT) attacks since the exploit can be
customized.”