Microsoft Will Once Again Allow VBA Macros on Downloaded Documents by Default
Web 3 projects lost $2b during 1H of 2022, Chinese hacking groups are targeting Russian telecoms, License plate readers pose privacy threats in post-Roe America, Disneyland Instagram hacked, more
In a reversal of its decision earlier this year that it would block VBA macros on downloaded documents by default, Microsoft said that it would roll back this change based on "feedback" until further notice.
Microsoft failed to explain this decision and has yet to publicly inform customers that VBA macros embedded in malicious Office documents will no longer be blocked automatically in Access, Excel, PowerPoint, Visio, and Word. VBA macros are a popular method to push many malware strains, including Emotet, TrickBot, Qbot, and Dridex, via phishing attacks with malicious Office document attachments. (Sergiu Gatlan / Bleeping Computer)
Related: Reddit - cybersecurity, ZDNet, The Stack, The Register, The Verge
Metacurity is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.