On May 18, 2020, Microsoft issued a warning about a massive phishing attack that uses a spreadsheet attachment that claims to have information about COVID-19 deaths. Unfortunately, the attachment contains a macro that tries to install a remote access tool if you allow macros to be enabled when you open the spreadsheet. This happens to be a legitimate tool that was designed with good intent. But in this case, its power is being abused by attackers in a phishing scam.
Macros have always been a risk in Microsoft Office documents, due to their power, which can be abused by an attacker. This is why you see a pop-up dialog box that asks if you want to enable macros in some spreadsheets. Macros can be OK if you know who created the spreadsheet and that it was created with good intent. However, you should never enable macros in any spreadsheet you aren’t familiar with.
Even with spreadsheets where you know the person who sent it to you, it is possible that the document could have been infected somehow. So, really, unless you know for sure that a document needs macros to run in order for it to do what you want it to do, you should not enable macros… ever. If it turns out that the document then doesn’t do what you expected it to do without the macros enabled, you should check with the creator to make sure it is OK to enable macros when using the document.
It is common for people to create documents like spreadsheets as tools and make them free for people to download from websites. This can be a nice way to contribute to a community. But you should be very cautious downloading any free documents from the web, and make sure that you don’t enable macros when using them.
I’ve rarely come across any Office documents that had macros that gave me problems when I didn’t enable them. So, this should be your default action. Don’t enable macros!
Cyber Security
Phishing Defense
Phishing threatens businesses and opens the door to ransomware. Fight phishing and spear phishing attacks with gamified learning.
Social Engineering Defense
Social engineering scams are a serious hazard to businesses. Fight back with Click Armor.
Cyber Security Awareness for Remote Workers
Home-based workers are vulnerable to cyber attacks. Build team immunity today.
Privacy and Compliance
PCI Compliance Awareness
When team members work in an environment where they may encounter cardholder data, they need to know what to do to protect it.
Gamified HIPAA Compliance Awareness
If your business is a supplier to a healthcare provider in the USA or Canada, your team needs to know what to do to protect Protected Health information (PHI).
Gamified Learning Platform
Active Awareness Platform
Experience the power of tailored gamified learning with Click Armor. Take your security awareness training to the next level.
