Skip to Content

MC437557: Reminder: Microsoft Office default change – Blocking VBA macros in files from the internet

Updated September 26, 2022: We have updated the content to show as intended. Thank you for your patience.

VBA macros are a common way for malicious actors to gain access to deploy malware and ransomware. As a reminder (MC322553 in Feb 2022, MC393185 in June 2022), to help improve security, we are changing the behavior of Office applications to now block macros in files from the internet. Learn more in this blog post.

This change only affects Office on devices running Windows and only affects the following applications: Access, Excel, PowerPoint, Visio, and Word.

MC437557: Reminder: Microsoft Office default change – Blocking VBA macros in files from the internet

The change described in this post is scheduled to be included in the following channels:

  • Monthly Enterprise Channel: Version 2208 on Tuesday October 11, 2022
  • Semi-Annual Enterprise Channel (Preview): Version 2208 on Tuesday October 11, 2022
  • Semi-Annual Enterprise Channel: Version 2208 on Tuesday January 10, 2023

Note: If you ever enabled or disabled the Block macros from running in Office files from the Internet policy, your organization will not be affected by this change.

Key points

  • Timing: Available in Monthly Enterprise Channel and Semi-Annual Enterprise Channel (Preview) in October 2022, available in Semi-Annual Enterprise Channel in January 2023
  • Action: Review and assess impact

How this will affect your organization

Previously, it was possible for end users to enable these macros by simply clicking a button on the Trust bar.

Now, with this change, once a user opens an attachment or downloads from the internet an untrusted Office file containing macros, a message bar displays a Security Risk that the file contains VBA macros obtained from the internet with a Learn More button.

Now, with this change, once a user opens an attachment or downloads from the internet an untrusted Office file containing macros, a message bar displays a Security Risk that the file contains VBA macros obtained from the internet with a Learn More button.

The Learn More button goes to an article for end users and information workers that contains information about the security risk of bad actors using macros, safe practices to prevent phishing and malware, and instructions on how to enable these macros (if absolutely needed).

What you need to do to prepare

Enterprises should evaluate their use of macros in files obtained from the internet to determine how this new default behavior will affect their users.

To learn more about how to get ready for this change and recommendations for managing VBA macros in Office files, read this article for Office admins.

Message ID: MC437557
Published: 2022-09-24
Updated: 2022-09-26
Platform: World tenant

    Ads Blocker Image Powered by Code Help Pro

    Your Support Matters...

    We run an independent site that\'s committed to delivering valuable content, but it comes with its challenges. Many of our readers use ad blockers, causing our advertising revenue to decline. Unlike some websites, we haven\'t implemented paywalls to restrict access. Your support can make a significant difference. If you find this website useful and choose to support us, it would greatly secure our future. We appreciate your help. If you\'re currently using an ad blocker, please consider disabling it for our site. Thank you for your understanding and support.