A malware campaign with PowerPoint files targets European countries. The Netherlands, the United Kingdom and Poland are targeted at the moment. That reports security company Trend Micro. The malware installs a trojan that tries to steal bank information from the user.
The computer is infected when a user swipes a mouse over a link in a PowerPoint file. It is therefore not required that the user actually click on one of the images or links in the text. However, the protected view must be disabled. In addition, the method works only on the desktop version of PowerPoint and not on the web variant.
The malware spreads itself through spam messages with malicious ppsx or pps files. The documents appear as an invoice or as a confirmation of an order.