Office Application Guard files in a virtualized sandbox
Microsoft introduced some security features for Microsoft 365 in early 2020. These features included Application Guard. Today, the company he said the general availability of the Guard for Office application.
The new application places documents from unreliable sources in a container before opening them to prevent attacks.
Microsoft says it is analyzing any malicious attacks contained in the Application Guard to reinforce the threat. Your files will also be protected from kernel-based attacks as it uses Hyper-V-based containers.
Unlike Protected View, which opens documents in read-only mode, Application Guard will open the files in a virtual test environment where you can still edit and print them in a restricted environment without leaving the container. These files may come from unreliable websites, files stored in potentially insecure folders, or a network and documents blocked by the File Block.
However, you can still choose to turn off protection for a specific file, if necessary, provided you are sure it is safe.
Before opening this file, it will be scanned with the Safe Documents feature if it is enabled. In addition to documents, emails from Application Guard and Microsoft Defender for Office 365 will be protected.
The new feature is disabled by default, and administrators will need to set the correct policy for each user in an organization.