Microsoft  has shared extra particulars about an essential safety replace to OneNote, by way of which it hopes tackle the rising subject of its program more and more getting used to push ransomware and different sorts of malware.

In a brand new Microsoft 365 assist doc (opens in new tab), the corporate listed a complete of 120 file extensions that can quickly be blocked in OneNote. Among the many file sorts .XLL, .ISO, .BAT, and .JS stand out. 

These extensions can even be blocked in different Workplace 365 (opens in new tab)applications similar to Outlook, Phrase, Excel, or PowerPoint. 

Blocking recordsdata 

Whereas beforehand, making an attempt to open a OneNote file with a suspicious attachment would deliver up a warning notification, the brand new replace will forestall the file from being opened – in any respect. As a substitute, the person will probably be met with a warning dialog saying “Your administrator has blocked your potential to open this file kind in OneNote”.

The modifications will roll out in Model 2304 in Present Channel (Preview) to OneNote for Microsoft 365, on Home windows-powered gadgets, both in April, or Could, this 12 months, it was stated. Retail variations of Workplace 2021, Workplace 2019, and Workplace 2016 (Present Channel) can even be up to date to replicate these modifications, nonetheless, volume-licensed variations of Workplace (Workplace Normal 2019, or OFfice LTSC Skilled Plus 2021) is not going to get the replace.

OneNote on the net, OneNote for Home windows 10, OneNote for Mac, or OneNote for Android/iOS is not going to be up to date, as effectively. 

Ever since Microsoft blocked its productiveness apps from working macros, hackers have been in search of a viable different to ship malware. Among the many totally different strategies one stood out – OneNote recordsdata with malicious attachments. The apply has gotten so tremendously well-liked, so shortly, that it compelled Microsoft’s hand and triggered the upcoming replace. 

One other well-liked methodology of malware supply is phishing emails with .ISO recordsdata connected which, by sideloading malicious .DLL recordsdata, efficiently obtain stage-two payloads to unsuspecting victims’ endpoints.

• We have additionally rounded up the most effective free workplace software program round

Through: BleepingComputer (opens in new tab)