Most of us know that macros in Office documents are one of the most common ways to get malware into an organization. Unfortunately, all to many organizations depend on their AV products to detect these macros and the associated malware. It’s sad fact that macro’s are easy to write, and it’s not too tough to evade AV by being smart about how you write a malicious macro.
Article Link: https://isc.sans.edu/diary/rss/26026