Heads up: Scammers are using yet another new trick to sneak malware onto Windows computers. This time it’s through ZIP files.
Cyber criminals bundle harmless and harmful files together in one ZIP file, but only the safe part is shown when the ZIP file is opened. This is called “ZIP file concatenation”, and it makes it easier for malware to hide from security software.
One recent phishing attack (where you’re tricked into sharing sensitive information) used this tactic through a fake shipping notice scam. The shipping notice seemed to be harmless when opened with standard apps. However, using other software to analyze the notice revealed the dangerous parts of the ZIP file.
To help keep your business protected, encourage your team to be cautious with ZIP attachments, especially if they come from unknown senders.
Investing in security software that scans files deeply (called "recursive unpacking") can also help to catch these hidden threats.
How confident are you that you’d spot one of these files?
Comments