Microsoft Security Advisory has confirmed a new wave of limited “zero-day” attacks was underway, using a code execution flaw in its Microsoft Office desktop productivity suite. They have issued warning to users to be on suspicious especially for Excel files that arrive unexpectedly — even if they come from a co-worker’s e-mail address, the advisory further added although excel files are currently being used to launch the spear phishing attacks, users of other Office applications (Word, PowerPoint, Outlook, Access, etc.) are potentially at risk.”