Office 365 to let admins block Active Content on Trusted Docs

Bleeping Computer -

Microsoft plans to allow Office 365 admins ensure that end-users can’t ignore organization-wide policies set up to block active content on Trusted Documents.

Redmond says trusted docs are files with active content (e.g., ActiveX controls, macros, and Dynamic Data Exchange (DDE) functions that don’t require user interaction) that open without warnings after the content has been enabled.

Trusted documents will automatically open without prompts even if altered by adding new (potentially malicious) active content, bypassing Office’s Protected View, which opens files from potentially unsafe locations as read-only.

“However, the prompt appears if the file was moved since you last trusted the file. After a document is trusted, it does not open in Protected View. Therefore, you should trust documents only if you trust the source of the file,” Microsoft explains.

Part of an ongoing Office security hardening effort

“We are changing the behavior of Office applications to enforce policies that block

The post Office 365 to let admins block Active Content on Trusted Docs first appeared first on Bleeping Computer.

Read More.....