I had an article published yesterday discussing the risks still posed by the Microsoft Office macro, even though Microsoft has tightened the security when using them:
Microsoft Office Macros Are Still an Issue – CyberAwake
But the threat actors do not stop there. Closing the macro attack vector sent the hackers scurrying around for another way to get at you through phishing emails. So now we have the increasing use of LNK files in attacks. These are files used by the Windows OS to link to other resources and apps – a convenient way for hackers to get around your system.
Threat groups are using Windows LNK files to gain access • The Register
Clive Catton MSc (Cyber Security) – by-line and other articles