Trend Micro security researchers have identified a new malware attack that hits the user when he passes the mouse pointer over a linked link to a suitably modified PowerPoint file, even without making any clicks. This is a method that was used in a spam campaign with the attempt to install a backdoor bank fraud known to Zusy, OTLARD or Gootkit.
As mentioned above, this new threat has been used in a spam campaign launched towards the end of May. Spam campaigns with bad attachments often hit with a firepower of tens of millions of messages in a few hours.
Sent messages are characterized by items such as Purchase Order, Invoice, and Confirmation, and obviously include a PowerPoint file called in several ways. The peak of the campaign was found on May 25th with 1444 surveys. At present, it is unclear what the rate of effectiveness of this technique may be, but a 0.5% rate could pose a major threat to companies and individuals around the world, especially those who use old versions Of Office.
On the Trend Micro official blog, you can find a detailed technical analysis of the threat at this address.