Microsoft has announced a significant security policy change, decreeing that users will soon no longer be able to activate VBA macros in certain documents from five of its most popular Office apps.
When it finally pulls the plug, users will no longer be able to run any VBA macros in Microsoft Word, Excel, Access, PowerPoint and Visio, for “untrusted” documents.
It seems that all files shared from outside the company network will be deemed “untrusted”, meaning all files coming from the same domain should still be able to keep their macros.
Macros - a super-useful liability
Macros are a big deal, for both businesses, and cybercriminals.
They are usually used to automate various tasks, such as importing or updating data coming from third-party sources. But the problem is that they can easily be abused by malicious actors to distribute ransomware, malware, steal sensitive data, or for other nefarious deeds.
For years, cybercrime groups have been sharing macro-powered malicious Office documents, preying on gullible or exhausted workers. Payment receipts, warnings of failed payments, job offers, Covid-19 and vaccine information, are just some of the document types crooks would share to have people run macros and infect their endpoints.
Microsoft has tried to tackle the issue with a tentative solution - to disable the macros in downloaded files by default, and to leave the user with the option of activating it or not.
However, as most people are not aware of the reason behind Microsoft’s decision to disable macros by default, they often end up enabling them after all.
Now, after years of pleads by various cybersecurity firms and experts, Microsoft has finally bit the bullet and gone for the extreme option of killing macros altogether.
The change is set to start in early April 2022, with Microsoft Office version 2203, which will be the public preview version.
- You might also want to check out our list of the best malware removal software right now
Via: The Record
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.