Is it a common practice to deny/filter e-mails that contain files with macros?

In this Ask the Expert Q&A, resident network security expert, Mike Chapple, discusses whether it a common practice to deny/filter e-mails that contain files with macros.

University of Notre Dame

Is it a common practice to deny/filter e-mails that contain files with macros? I currently have our firewalls set to deny VBA's and macro-laden files, but we need to send some files back and forth to headquarters and subs. Are there alternative setups or should we not worry about blocking macros?

At this point in time, I'd say it's standard practice for organizations to use an antivirus scanner on all inbound e-mails. In fact, you'd be hard-pressed to find anyone who doesn't. Worm outbreaks like Melissa and ILOVEYOU in the late 1990s forced everyone's hand in that respect.

The whole idea of blocking various classes of e-mail can be somewhat tricky and controversial. I know of organizations that block all documents containing scripts, while others block all compressed files because they might be encrypted. This really comes down to a business decision. If you have a business need for these files, you probably don't want to block them completely. It's reasonable to rely on your mail server's antivirus software to detect and remove malicious scripts. On the other hand, if you're able to clearly identify those senders (say everyone at foo.com) that need to exchange script-laden files, you might want to configure your server to reject these attachments from anyone else.

This was last published in April 2006

Dig Deeper on Malware, virus, Trojan and spyware protection and removal

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Mike Chapple

How to prevent DoS attacks in the enterprise

It's not possible to eradicate the risk of DoS attacks, but there are steps infosec pros can take to reduce their impact. Mike Chapple shares ... Continue Reading

How should HIPAA covered entities respond to healthcare ransomware?

The HHS OCR ruled that healthcare ransomware attacks are HIPAA violations, so these covered entities need to react according to the HHS's guidance. ... Continue Reading

Should healthcare organizations follow the NIST guidelines for HIPAA?

HIPAA regulations incorporate NIST guidelines and standards, so do healthcare organizations need to be compliant with both? Expert Mike Chapple ... Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

How the Microsoft Authenticator app integrates with Azure AD

Microsoft expanded the Microsoft Authenticator app to integrate with tens of thousands of Azure AD apps. Expert Dave Shackleford ...

What Microsoft's InPrivate Desktop feature could mean for enterprises

Microsoft's secretive, potential new feature InPrivate Desktop could give security teams access to disposable sandboxes. Expert ...

CCSP Domain 6: Cloud computing regulations and legal issues

This Security School will help you prepare for Domain 6 of the CCSP exam, "Legal and Compliance," which covers cloud computing ...

SearchNetworking

Cisco earnings, revenue up as sales rise across product lines

Cisco earnings and revenues grew in the quarter ended Oct. 27 as sales increased across product lines, geographies and customer ...

Aruba 802.11ax APs, switches address niche market

Aruba has launched access points and switches aimed at early adopters of the next-generation Wi-Fi standard. The Aruba 802.11ax ...

LiveAction updates LiveNX network management service

In networking news, LiveAction launches LiveNX 8 and LiveWire; Kaloom and Red Hat collaborate for a virtualized central office; ...

SearchCIO

How augmented intelligence can enhance jobs

Augmented intelligence -- AI used to enhance human skills -- makes workplaces more productive, diverse, inclusive and authentic. ...

What are the top IoT security challenges in corporate settings?

Extended product lifecycles, consumer apathy and lacking federal regulation lead the top IoT security challenges in corporate ...

Benefits of PPM software include reduced failure rates

PPM software provides organizations a greater insight into projects, enabling decision-makers to better manage and prioritize ...

SearchEnterpriseDesktop

Citrix acquisition of Sapho has legroom for integration

Citrix customers will get new capabilities around simplifying common business workflows with the company's latest acquisition, ...

Create and enforce a password policy across the enterprise

There are new-fangled approaches to enterprise security, such as biometric authentication, but tried-and-true passwords are still...

Microsoft reissues Windows 10 October Update, Server 2019

Windows Server 2019 and the Windows 10 October Update are back in IT admins' hands, six weeks after the company pulled them from ...

SearchCloudComputing

Evaluate 3 cloud-native CI/CD pipeline tools

When it comes to continuous integration and delivery tools, there is no shortage of comparable options -- including those from ...

Cloud-based quantum computing inches slowly toward enterprise

A lot of questions -- and complexity -- still surround quantum computing. But as enterprises eventually ramp up with the ...

Cloud cost management tools heat up with Apptio sale

Why does private equity firm Vista Equity Partners want to pay nearly $2 billion for IT spend analytics vendor Apptio? Here's a ...

ComputerWeekly.com

Three factors marginalising the CISO role

Chief information security officers are typically marginalised due to three factors, and de-coupling the technical and managerial...

Oracle - Autonomous computing that declines a special name

In this e-guide, follow Oracle's twin paths to adding AI and delivering software over the cloud – on its own platform and ...

WISE emphasises importance of role models at 2018 awards

Gender balance campaign WISE used its 2018 awards ceremony to highlight the importance of female role models, and called on men ...

Dig Deeper on Malware, virus, Trojan and spyware protection and removal

Related Q&A from Mike Chapple

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.