De-risking Microsoft Office Macros

Recent events have shown us the very real risk cyber-attacks pose in our sector. Keeping our University’s devices and their confidential contents safe is of utmost priority. 

Starting August 2023, the running of unsigned/untrusted Microsoft Office macros will be progressively blocked on University-managed computers across all versions of Microsoft Office, except for cases where there is a demonstrated business need. 

This will reduce the risk of data breaches and increase protection against malicious software. This change also aligns with security best practices, as articulated in the Australian Cyber Security Centre’s Essential 8 strategies.2

What you need to know

Macros are small programs often written to automate repetitive tasks in Microsoft Office. Macros are also a common way for malicious actors to deploy malware and cause harm to the University by gaining unauthorised access to data.

Request to have macros assessed

We expect that there may be some exceptions required to ensure ongoing support of your activities. 

If you have a business need to use Microsoft Office macros on your University-managed computer, please submit a request through the MyIT Portal to have your macros assessed by ITDS. 

Where to go for support

If you have any questions, please contact the ITDS Service Desk via the MyIT Portal.