The article is 6 years old but the CSV Injection still works on Google Sheets and Excel. (I imported the example csv file into both platforms and the equations were executed)

Great reminder to be vigilant. Pride cometh before a fall:

> Are they a technically savvy user? Then it is even worse. They know the CSV format is just text data, there can’t possibly be anything harmful in there. Guaranteed.