Freelance Security Consultant, Xavier Mertens, finds new malware campaign in the Microsoft’s Publisher files (.pub).
The malware is delivered by Publisher’s use and support of Macros within the .pub files. Publisher files are rarely used but native to the Office suite, giving the attack a high chance of success, with low detectability.
Due to the ease of access and support for .pub files, we would consider this a valid risk to look out for. One could easily be sent a Publisher file as an attachment in an email and mistaken the file as safe, due to unfamiliarity.