Comment by diarrhea
5 years ago
If people didn't allow macros in Excel, stayed in read-only mode in Word and only opened sandboxed PDFs (convert to images in sandbox, OCR result, stitch back together), we would see a sharp decline in successful breaches. But that would be boring.
I think opening all PDFs in a browser would be good enough™ as browser sandboxes are about as secure as sandboxing gets.
Operation aurora happened when most people still used IE and some used Opera (i did) and very few Firefox and others