>"In order for this attack to be carried out, a user must first open a malicious Word file attached to an e-mail or otherwise provided to them by an attacker".
>
>"As a best practice, users should always exercise extreme caution when opening unsolicited attachments from both known and unknown sources".
>
>I do not open any eMail from an unknown source but if a known source sends me a Word doc, what to do?
This is the reason I always write my texts in Open Office, and send them as PDF attachments (specially the resume :). PDF doesn't carry viruses, not any that I know of, and pretty much 99.99% of recipients have a reader. Quite often they demand a Word version of the text - which then makes me a trusted source :) - and I provide a .doc export from OOffice, which is generally half shorter than the same file just opened and saved in Word.