Is it a common practice to deny/filter e-mails that contain files with macros?

In this Ask the Expert Q&A, resident network security expert, Mike Chapple, discusses whether it a common practice to deny/filter e-mails that contain files with macros.

University of Notre Dame

Is it a common practice to deny/filter e-mails that contain files with macros? I currently have our firewalls set to deny VBA's and macro-laden files, but we need to send some files back and forth to headquarters and subs. Are there alternative setups or should we not worry about blocking macros?

At this point in time, I'd say it's standard practice for organizations to use an antivirus scanner on all inbound e-mails. In fact, you'd be hard-pressed to find anyone who doesn't. Worm outbreaks like Melissa and ILOVEYOU in the late 1990s forced everyone's hand in that respect.

The whole idea of blocking various classes of e-mail can be somewhat tricky and controversial. I know of organizations that block all documents containing scripts, while others block all compressed files because they might be encrypted. This really comes down to a business decision. If you have a business need for these files, you probably don't want to block them completely. It's reasonable to rely on your mail server's antivirus software to detect and remove malicious scripts. On the other hand, if you're able to clearly identify those senders (say everyone at foo.com) that need to exchange script-laden files, you might want to configure your server to reject these attachments from anyone else.

This was last published in April 2006

Dig Deeper on Malware, virus, Trojan and spyware protection and removal

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Mike Chapple

How to prevent DoS attacks in the enterprise

It's not possible to eradicate the risk of DoS attacks, but there are steps infosec pros can take to reduce their impact. Mike Chapple shares ... Continue Reading

How should HIPAA covered entities respond to healthcare ransomware?

The HHS OCR ruled that healthcare ransomware attacks are HIPAA violations, so these covered entities need to react according to the HHS's guidance. ... Continue Reading

Should healthcare organizations follow the NIST guidelines for HIPAA?

HIPAA regulations incorporate NIST guidelines and standards, so do healthcare organizations need to be compliant with both? Expert Mike Chapple ... Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

A look at the new Google cloud security tools and features

Google cloud security has been bolstered by new GCP tools and capabilities. Learn more about Google's improved cloud security ...

SaaS platform security: The challenges of cloud network security

Organizations have the necessary tools to protect data stored and processed in IaaS platforms. Learn why SaaS platform security ...

How Azure AD uses cloud access control to protect credentials

Features such as Microsoft Azure AD Smart Lockout and Password Protection add security via trusted authentication. Learn more ...

SearchNetworking

Juniper bundles Contrail Networking, OpenStack for the edge

Juniper Networks has introduced the Contrail Edge Cloud. The platform for running service providers' network edge applications ...

Access networking layer ready for software-defined reboot

After years of stagnation, the access-layer network is in need of a makeover. Implementing software-defined configurations is ...

Are SD-WAN security concerns warranted?

Networking analysts and engineers examine SD-WAN security concerns, the importance of cabling in wireless environments and a new ...

SearchCIO

Augmented intelligence: The clearest path to focused AI?

Augmented intelligence assists humans in completing tasks that artificial intelligence can't yet handle. CIOs should invest in ...

Managing a multi-cloud environment: Best practices and pain points

To reap the benefits of a multi-cloud strategy, CIOs must first have the right skills and processes in place. Here are the ...

How to manage multi-cloud: Deployment and maintenance strategies

Although multi-cloud deployment can help increase IT flexibility, CIOs must develop strategies to ensure these complicated ...

SearchEnterpriseDesktop

Reduce update-related downtime after a Windows 10 OS upgrade

Windows 10 updates are a necessary evil, as they add new features and improve security, but also cause downtime for users. IT can...

4 tips for handling the upgrade process to Windows 10

To ensure a smooth upgrade to Windows 10, IT should take advantage of helpful tools such as the Microsoft Management Console to ...

Assess IT help desk software options based on these features

Explore communication channels, ticket management, agent management, knowledge base options and reporting capabilities when ...

SearchCloudComputing

Compare IaC tools for hybrid, multi-cloud environments

Infrastructure-as-code tools come in two flavors: third-party and those native to a certain cloud provider. Keep these factors in...

Improve hybrid cloud monitoring through automation, alerts

To effectively monitor hybrid cloud infrastructure -- without being overloaded with data and alerts -- IT teams need to rethink ...

How Azure Cloud Shell can streamline resource management

Azure Cloud Shell's browser-based model frees IT teams from installation headaches but presents some formatting and timeout ...

ComputerWeekly.com

Waitrose to launch same-day delivery trial

High-end supermarket Waitrose is partnering with retail delivery startup On the Dot to trial same-day delivery for its food and ...

Indonesia leads ASEAN region in AI adoption

The sprawling archipelago of more than 260 million people is becoming a hotbed for adoption of artificial intelligence, led by ...

Oracle claims positive traction for autonomous database in ASEAN

Oracle’s newly minted autonomous database could leave database administrators unemployed, but that has not stopped a Thai payment...

Related Resources

Dig Deeper on Malware, virus, Trojan and spyware protection and removal

Related Q&A from Mike Chapple

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.