In the month since malicious hackers started using rigged PowerPoint files to launch targeted attacks, Microsoft has produced a “critical” bulletin affecting its flagship presentation program.

The PowerPoint update ... is rated “critical” (remote code execution) for all supported versions of Microsoft Powerpoint 2000 through 2007. via Attackers pounce on Microsoft PowerPoint It looks like the attacks are targeted to government and large corporates in an attempt to steal critical data, so its up to you to make that decision. However, if you regularly exchange PowerPoint files with people from those environments, some caution might be in order.

In the meantime, Microsoft recommends that Office users avoid opening or saving files, even from trusted sources because those could be spoofed.

If PowerPoint usage is heavy in your business, you should consider implementing MOICE, a tool that uses the 2007 Microsoft Office system converters to convert the Office binary format files into the Office Open XML format.

IT admins could also use the Microsoft Office File Block policy to block the opening of Office 2003 and earlier documents from unknown or untrusted sources and locations. Switching to Open Office might also be an option.

Welcome back to Groupings blog. Now that you are a regular, please feel free to comment on any story that you feel comfortable with.