We've been telling you for years about a banking trojan called Zeus that infects computers like yours with malware. It's used to steal your banking credentials, like your login and password.
Well, there's a new member of the family who you definitely don't want to run into. Cybercriminals using the Zeus family of trojans, notably including Dridex, have stolen hundreds of millions of dollars from victims (or, by some estimates, billions of dollars).
Its newest incarnation is called Panda Banker and it's spreading through a weaponized version of Microsoft Word. The hackers use a complex method to ultimately do something simple: steal your money.
The Word files exploit a Microsoft Office vulnerability, either CVE-2014-1761 or CVE-2021-0158. Or, the hackers trick you into enabling macros to run. Note: In Microsoft Office, macros are disabled. You have to enable them in order for them to run.