Avoid untrusted PowerPoint docs, says Microsoft

By
Follow google news

Microsoft advised PowerPoint users this week to avoid Office files from untrusted sources - and unexpected files from trusted sources - as a workaround for the recently discovered flaw in PowerPoint now being exploited in targeted attacks.

Microsoft researchers ware finalizing an update that could be released as part of the Aug. 8 Patch Tuesday, according to a new security advisory released this week.


The Redmond, Wash., company was investigating new reports of limited zero-day attacks using the flaw, according to a company spokesman.

On Monday, Stephen Toulouse, security program manager, said the company's researchers were working "on a state of high alert" since targeted attacks on Office flaws began appearing in recent months.

The PowerPoint exploit, like an exploit for Excel used a month before, was first seen in the days following Patch Tuesday, when Microsoft released seven new fixes for security flaws in its products.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
avoiddocsmicrosoftpowerpointsayssecurity

Sponsored Whitepapers

Fintech compliance made fast and secure
Fintech compliance made fast and secure
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
How to evaluate SIEM solutions Safeguarding your future Get a demo Download guide
2025 Security operations insights: Three-quarters of security leaders need something new in SIEM
2025 Security operations insights: Three-quarters of security leaders need something new in SIEM
Sumo Logic named in the 2025 Gartner Critical Capabilities for Security Information and Event Management (SIEM)
Sumo Logic named in the 2025 Gartner Critical Capabilities for Security Information and Event Management (SIEM)
The cloud tipping point
The cloud tipping point

Events

Most Read Articles

University of Sydney "online IT code library" breached

University of Sydney "online IT code library" breached
NSW Health clinicians "normalise" bypass of cyber security controls

NSW Health clinicians "normalise" bypass of cyber security controls
UK government was hacked in October, minister confirms

UK government was hacked in October, minister confirms
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?