Skip to main content

Digital Trends may earn a commission when you buy through links on our site. Why trust us?

Use Office? Your PC could be at risk due to this Microsoft change

If you’re using Microsoft Office on your Windows PC, then you might want to keep your eye out for potential new security issues.

Microsoft has just backtracked on a decision it made earlier in 2022, and will no longer be blocking Visual Basic for Applications (VBA) macros in Office files by default across Word, PowerPoint, Excel, Access, and Visio.

The backtrack means you’ll no longer have to go to file properties, save the file to a specific location, or mark it as a trusted document to fully interact with a file that has macros enabled. Microsoft is now effectively rolling back to an older security system, where you can simply click “enable content” to open Office files with macros.

Macro alerts in Word file
Bleeping Computer

This rollback choice also has huge security implications. While macros are popularly used for replacing a repetitive series of keyboard and mouse actions in Office, it is also used by hackers. Those with bad intent can unleash malware on unsuspecting users who open downloaded Office documents that have macros enabled. No longer blocking them by default could mean Office users might be more open to these types of attacks.

An update on this decision was also announced in the Microsoft 365 message center, which is typically accessed by IT admins to see important service alerts. Microsoft explained the change, saying that it was based on feedback. It also seemed to hint that an improvement could be coming soon. This revert first rolled out to wider audiences in June 2022, according to Bleeping Computer. 

“We appreciate the feedback we’ve received so far, and we’re working to make improvements in this experience. We’ll provide another update when we’re ready to release again to the Current Channel. Thank you,” says the message.

Many Office users have noticed this change and have commented on Microsoft’s original announcement about the blocking of VBA macros. These users seem to be upset with the company’s communication about such a big security change and want Microsoft to be more transparent about the reasoning. Some were also upset about the extra steps originally needed to unblock Office documents with VBA macros. It is likely that IT admins had many headaches retraining users on how to enable macros.

In a statement to Bleeping Computer, Microsoft indicated that it “doesn’t have anything more to share” about why it’s rolling back the change.

Editors' Recommendations

Arif Bacchus
Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…
Here’s everything that’s new in Microsoft Office 2021
Some of the apps that are included in a Microsoft Office 365 Personal subscription.

If you're not interested in subscribing or paying a monthly fee to use Microsoft Word and other apps, then you might want to consider buying what's known as the "perpetual" or "stand-alone" version. The most current version of this is Office 2019, but on October 5, Microsoft will be releasing Office 2021.

Pricing details for Office 2021 haven't been shared at the time of writing, but it's expected to be the same as Office 2019. Yet, there are a few minor differences in the core apps, including Microsoft Word, PowerPoint, Excel, and Outlook. Office 2021 brings a new visual look for all the core apps and a set of new features. Here's a look at some of those.
New in Microsoft Word 2021

Read more
Razer mice could give hackers wide-open local access to your Windows PC
Razer Viper Ultimate Mouse

The security problems just keep coming for Windows. In the latest, a hacker has discovered that by simply using a Razer mouse, someone with bad intent who already has full physical access to your PC can run their own payloads and even abuse and enter the PowerShell command terminal.

A bit like the ongoing PrintNightmare vulnerability issue of injecting bad drivers via Point and Print, this new flaw has to deal with the way that Razer's gaming software works. Once a Razer mouse is plugged into a PC, Windows Update downloads and runs a "Razer installer" as a system process. This installer then allows hackers to open an elevated version of Windows Explorer to choose where to install drivers, and they can simply then open PowerShell by pressing the Shift and the right-click buttons on the keyboard. You can see this in action below.

Read more
New version of Microsoft Edge could save you from using bad passwords online
microsoft edge gets startup boost feature take on chrome new

Microsoft's Edge web browser just got a new feature that ensures you're a bit safer when browsing the web.

Now rolling out in version 92 of Edge is a new password health dashboard, to help you decide if the password you've saved is strong enough, or used on another website.

Read more