Malicious hackers are exploiting an as-yet-unpatched security vulnerability in Microsoft Office products in attacks designed to secretly infect targeted computers with malware. The vulnerability is thought to be in all versions of Microsoft Office, including Office 2016 running on Windows 10. The malicious code comes in the form of a boobytrapped OL2link object embedded within the file. When a victim opens the poisoned Word document, a decoy file is displayed while the malware silently installs malicious code downloaded from the web in the background.”]

