This week we had an infected email attachment pass through our multiple levels of security (MimeCast in the Cloud + Barracuda Spam/Virus Firewall internally + ESET Endpoint Security installed on each workstation).
The attachment had a DOC extension with the virus embedded. The Barracuda actually quarantined it, but the user allowed it out of their quarantine, and ESET didn't stop it from executing because it was such a new variant of the virus.
In an effort to avoid additional infections of this nature, I set our incoming email policy to block all emails with DOC file extensions, knowing I may have some negative feedback from our users who send/receive Word documents.
I'm wondering if it's a common/best practice to block emails with DOC (and DOCX) file attachments, or if I'm being too restrictive.