Security firms are in a daze again over the latest virus to attack a Microsoft Office program. This time the virus is concealed in a malicious PowerPoint attachment that is making the rounds from a Google Gmail address. The file installs a keylogger and opens up a backdoor so that the hackers can take over a machine to gather keystrokes and install malware. Then the virus installs a blank PowerPoint presentation so that it looks like nothing has happened.
Asian characters are seems to be on the subject line, so it's likely targeted to the Asian market, according to the BBC.
Trojan.PPDropper.B spreads by exploiting an undocumented Microsoft Powerpoint remote code execution vulnerability. The presentation appears to be 18 humorous slides about love between men and women.
The Microsoft Security Response Center Blog warns that people should be careful when opening any unexpected PowerPoint file, even from a trusted source. The statement posted on the blog says: "We've activated our security response process and we have added detection to the Windows Live Safety Center for up-to-date removal of malicious software we've seen that attempts to exploit the vulnerability".
New Microsoft PowerPoint Virus source
Comment Preview