Security News > 2021 > May > Office 365 security baseline adds macro signing, JScript protection
Microsoft has updated the security baseline for Microsoft 365 Apps for enterprise to include protection from JScript code execution attacks and unsigned macros.
Security baselines enable security admins to use Microsoft-recommended Group Policy Object baselines to reduce the attack surface of Microsoft 365 Apps and boost the security posture of enterprise endpoints they run on.
"A security baseline is a group of Microsoft-recommended configuration settings that explains their security impact," as Microsoft explains.
The highlights of the new recommended security configuration baseline settings for Microsoft 365 Apps for enterprise, version 2104, include protection against remote code execution attacks by restricting legacy JScript execution for Office.
The final release of the security baseline for Microsoft 365 Apps for enterprise is available for download via the Microsoft Security Compliance Toolkit.
Future security baselines will be aligned with semi-annual channel releases of Microsoft 365 Apps for enterprise every June and December.