Phishing emails continued to evolve last year, according to a new report from PhishMe, with Microsoft Office documents and unique subject lines used to get past enterprise filters.
Malicious Office macros have been around since the 1990s, said David MacKinnon, director of research at PhishMe, because there’s little that companies can do to block them.
“Office documents are part of everyday use,” he said.
And although many Office users don’t take advantage of the macro functionality, if a company shuts off macros then the documents take the users through the process of turning them back on again.
“Inside these Word documents, there would just be a single image embedded, and the image just says, ‘Your security settings don’t allow you to view the document,’ and guide the user to enable the macros,” said MacKinnon.