Re: Here we go again
"Attacks like this just would not work, if the macros were sandboxed DISABLED properly."
Fixed it for ya.
Also, gummints should just STOP using Micro-shaft office stuff. Just stop. A 'hardened' version of Libre Office, blessed and maintained by the nation's intelligence and security agencies, would be an ideal replacement.
And "click to open" from an e-mail? How about PLAIN TEXT ONLY on e-mails, and no auto-view inline attachments, either. And mail servers AUTO-STRIPPING attachments that can be executed from ALL e-mails going into their department's e-mail server.
(or maybe they're already doing that and the attack ain't so "Fancy"... ?)
Being hit by 20-year-old exploits like WORD MACROS would be an EMBARASSMENT.