Bitdefender researchers have found a worm disguised as Office Genuine Advantage, a program Microsoft once used to validate copies of Microsoft Office.
"Microsoft retired OGA in December 2010, but that hasn't stopped the attackers from using it to ensnare victims a year later," writes SecurityNewsDaily's Matt Liebowitz.
"The fraudulent OGA program, labeled 'office_genuine.exe,' is spreading via Yahoo Messenger, and once the attachment is downloaded, it opens a portal in people's computers for remote attackers to control the machines or install more malicious software," Liebowitz writes.
Go to "Fake Microsoft Office Authentication Tool Hides Dangerous Worm" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.