14 DAY TRIAL // We’ve known for a while that Office macros are often a double-edged sword, because way too often they can be used by malicious actors to compromise the security of a Windows device.
As a result, Microsoft’s decision to block Internet macros by default in the productivity suite wasn’t necessarily surprising, though on the other hand, it took many by surprise.
Despite a heavy wave of criticism, Microsoft showed no interest in undoing the block, explaining that blocking macros improves the security of its users.
“For macros in files obtained from the internet, users will no longer be able to enable content with a click of a button. A message bar will appear for users notifying them with a button to learn more. The default is more secure and is expected to keep more users safe including home users and information workers in managed organizations,” the company originally explained, adding that the change only affected Windows versions of Word, Excel, PowerPoint, Access and Visio.
“Once a user opens an attachment or downloads from the internet an untrusted Office file containing macros, a message bar displays a Security Risk that the file contains Visual Basic for Applications (VBA) macros obtained from the internet with a Learn More button.”
Change quietly reverted
But earlier this month, it was discovered that Microsoft quietly reversed its decision, with no block now in place for Internet macros.
While an announcement in this regard wasn’t offered, Microsoft's Angela Robertson explained in a comment to the original press release that the company’s decision was reverted because of user feedback.
“Based on feedback received, a rollback has started. An update about the rollback is in progress. I apologize for any inconvenience of the rollback starting before the update about the change was made available,” he said. Most likely, an official announcement from Microsoft will land in a matter of days.