Description: Microsoft Word and Excel documents can be tokenized to alert you if your data falls in the wrong hands.
Note: Not all tokens are created equal, Macro and non-Macro Office documents do differ. Tokenised Macro documents are similar to the original MS Word token except that they attempt to grab more information from the attacker by making use of an embedded Macro. This means that the "attacker" will be prompted to enable Macros on opening the document. (We reason that users enable Macros to carry on their work, and attackers will too).
Follow the steps below to create a Word / Excel Token Canarytoken:
Log in to your Console.
Select the Canarytokens tile.
Select your preference of Word, Word Macro, or Excel Macro token from the list.
Over time, you will deploy thousands of tokens all over the place. Make sure that your Reminder is as descriptive as possible, and will remind you in the future of where the token was dropped. It may create confusion if a token generated an alert that reads “test" - and not remembering where you placed it.
Go ahead and click on Create token when you are ready to generate.
Note: The upload document feature is only available for Non-macro Word document tokens, this will allow you to upload a custom file to be tokened.
Download the token and place it in its intended location.
Note: Once downloaded, you can rename your tokened file, we suggest you rename it to something that would attract an attacker to open your file. E.g "My Credentials"
An alert is triggered when the document is opened, and more information is present if the macro is run.
You're done! ;-)