A bug with the online video feature in Microsoft Word, recently discovered by Cymulate security researchers, found its first use for deliver malware. Trend Micro specialists discovered and described the URSNIF information stealer spreading mechanism. Users can defend against threats abusing this by blocking Word documents that has the embeddedHtml tag in their respective XML files or disabling documents with embedded video.
