ACSC outlines Office macro security measures
The Australian Cyber Security Centre (ACSC) has updated its online Microsoft Office Macro Security document, outlining steps that can be taken to keep systems secure from malicious macros.
According to the ACSC, “An increasing number of attempts to compromise organisations using malicious macros have been observed. In particular, adversaries have been observed using social engineering techniques to entice users into executing malicious macros in Microsoft Office files. The purpose of these malicious macros can range from cybercrime to more sophisticated exploitation attempts.
“By understanding the business requirements for the use of macros, and applying the recommendations in this document, organisations can effectively manage the risk of allowing macros in their environments.”
The document explains Microsoft Office macros and their use, and details ways in which different versions of Office can be made more secure via changing policy settings and other approaches.
The ACSC website also provides lots of information on other methods for hardening various versions Office, as well as Windows and other software, including advice for users of the now-unsupported Windows 7.
BeyondTrust introduces tools for securing AI agents
Identity security company BeyondTrust has enhanced its Pathfinder Platform with tools designed to...
CrowdStrike and NVIDIA develop secure-by-design AI blueprint
CrowdStrike has arranged to integrate its Falcon security platform into the open-source NVIDIA...
Unit42 discloses severe flaw in Google's Gemini
Researchers from Palo Alto Networks' Unit 42 have detailed their discovery of a...
