Sandworm, although somewhat misnamed, is an attack that exploits the vulnerability in Microsoft Office that was patched by MS14-060 – but not before attacks using PowerPoint were seen in the wild. A malicious PowerPoint file can pull in and launch an external executable – and we know that is not a good thing. This points up the importance of installing security updates as soon as possible (although that still means testing them thoroughly, considering the problematic patches that have been released recently) and in the meantime, utilizing workarounds (such as avoiding the opening of PowerPoint files from sources you don’t absolutely trust.
Read more about Sandworm here:
http://nakedsecurity.sophos.com/2014/10/15/the-sandworm-malware-what-you-need-to-know/