"Due to the higher frequency we are seeing in word and excel macro based trojans, malware and viruses coming into our inboxes ..."

Is this true for you and/or your company?

I have not heard any such thing until our company added a policy, and now I must enable macros like 50 times a day...

LVL 22
Anne TroyEast Coast ManagerAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

JohnBusiness Consultant (Owner)Commented:
No, not true for us.

You need to get top notch spam filtering software or service and keep the spam out of your inboxes. An external spam service is the best way to get rid of this stuff.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Steven HarrisPresidentCommented:
Although macros can be abused, I have not seen anything to suggest that this is a viable way to introduce trojans, viruses, etc. I agree with John on the external service, but also take into account that common sense is still the best option for any company, meaning having users delete emails with attachments  they are not expecting among other practices.
Danny ChildIT ManagerCommented:
The days of a VB-based virus are far behind us, as the malicious code is very easy to spot, and hard to make polymorphic (ie self-changing).  If your perimeter defences are good (email scanning etc), I'd say macro protection at the desktop is unnecessary.

IMHO, turning off macros gives a false sense of security.  All the dubious attachments that come into us are HTML based, or EXE.

The only exception I would make is if you're in, say, an educational establishment, where the "insider threat" is much greater, and where students will like to get involved in pranking...
Become a CompTIA Certified Healthcare IT Tech

This course will help prep you to earn the CompTIA Healthcare IT Technician certification showing that you have the knowledge and skills needed to succeed in installing, managing, and troubleshooting IT systems in medical and clinical settings.

There is always a balancing act between security and convenience. Want secure logins? Create long passwords, which will be secure but inconvenient. And make every login have a unique password. Again, secure but inconvenient.

The same is true for macros. They can be used maliciously, and they can launch automatically. It is safer to disable that automatic launch capability. I do this by choice, because I prefer safety over convenience. I do that for the same reason I use long passwords.

@Steven, what you consider to be common sense is really "technical awareness" which everyone does not have. Basing a security system on "common sense" is as risky as "security by obscurity."
Danny ChildIT ManagerCommented:
I'd also add, that allowing macros to be run on demand is not much of an effective defence - unless you have some effective screening of the macro code first.  And, if you did, why block the macros?
Steven HarrisPresidentCommented:
Thomas, good points; however, rest assured I was not suggesting to base their security on common sense or technical awareness alone.
Anne TroyEast Coast ManagerAuthor Commented:
Thanks so much everyone!
JohnBusiness Consultant (Owner)Commented:
@Dreamboat  - You are very welcome and I was happy to help
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Excel

From novice to tech pro — start learning today.