How Cybercriminals Adapted to Microsoft Blocking Macros by Default


Threat actors have been using malicious Microsoft Office macros for a very long time to get access to their targets’ machines. Because of this, Microsoft finally, albeit unevenly, started banning macros by default on files accessed from the Internet in 2022. Since Microsoft made the decision to automatically block Office macros, threat actors have been compelled to change and rapidly embrace new techniques for spreading malware.

Hackers are now forced to devise new strategies to spread their virus because they no longer have their go-to toy. Selena Larson, the author of a recent research on the practise, claims that “in many ways, they’re just kind of throwing spaghetti at the wall to see what sticks.”

Read More…