Microsoft Office Macro Policy Reversal: A Legacy Of Incompetent Security Management

Over the weekend, Ars Technica's Dan Goodin reported on the reversal of the current Microsoft Corporation (NASDAQ: MSFT) Office untrusted macro run policy. Apparently, the company will no longer block untrusted macro execution within Microsoft Office documents (via the utilization of various means - read Defender, et cetera).

During a brief conversation yesterday, a fellow security professional with knowledge of the matter speculated to me: "Maybe they are going into the ransomware business"...

Clear …

legacy macro management microsoft microsoft cruft microsoft office office policy security