The latest phishing attack uses an email that appears to come from someone you know and appears to be a reply to a previous message. This makes it very hard to detect. The body of the message asks the user to open a Word attachment that contains instructions on how to enable Word content.

Of course if you follow the instructions, a banking trojan is downloaded onto your computer that can steal your banking credentials, record your key strokes, take a screen shot capture, etc.

This is a reminder to NEVER enable the use of macros in Word documents. If you receive a Word document that asks you to enable editing, enable content or enable a macro, call the sender to verify that the email is legitimate and the attachment is safe.