Cybercriminals have long used the method of disguising malware by sending it as macros in seemingly innocent documents. In the end, Microsoft decided to offer a solution that would reduce the effectiveness of this path of infection of computers.

From April 2022, Visual Basic for Applications (VBA) macros placed in Office applications will be blocked by default, making it difficult to install malware remotely via compromised documents.

Check also:

VBA Macros are a powerful and widely used automation tool that allows you to significantly increase the functionality of Microsoft Office applications. But cybercriminals have started using it to distribute malware, including ransomware, to unsuspecting users.

The current model where users can enable macros with a single click has led to an escalation of threats, with users in many cases running the macros without thinking, making it easier for hackers to launch cyberattacks.

Microsoft’s changes mean that users will still be able to run the macros, but the process will be more difficult. It will require navigating through additional layers of software, reducing the chance of accidentally activating macros.

Initially, the new functionality will be limited to Office running on Windows PCs and will be applied to World, Excel, PowerPoint, Access and Visio.

The change will be rolled out in April in Office 2203 and will be rolled out later in other update channels such as Current Channel, Monthly Enterprise Channel, and Half-Annual Enterprise Channel. Microsoft is also planning to make this change to Office LTSC, Office 2021, Office 2019, Office 2016, and Office 2013 in the future.