Hackers attack via zero-day PowerPoint vulnerability

Graham Cluley
@gcluley

Microsoft has issued a warning about an unpatched security hole in PowerPoint that is being exploited by hackers. The attacks rely upon hackers creating a specially crafted booby-trapped PowerPoint file that when opened on the victim’s computer runs malicious code without permission.

The good news is that the latest versions of PowerPoint (Microsoft Office PowerPoint 2007 and Microsoft Office for Mac 2008) are not affected by this critical security flaw. However, if you are running Microsoft Office PowerPoint 2000 Service Pack 3, Microsoft Office PowerPoint 2002 Service Pack 3, Microsoft Office PowerPoint 2003 Service Pack 3, or Microsoft Office 2004 for Mac in your company then you could be at risk.

Once a PC has been infected by a backdoor Trojan, hackers can gain access to the computer to steal information, to plant further malicious software,…

Read more in my article on the Naked Security website.

Found this article interesting? Follow Graham Cluley on Twitter to read more of the exclusive content we post.


Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, or drop him an email.