Cofense report claims threat actors manipulate extensions to evade SEG file filters effectively
Multi-layered defenses are crucial for combating archive-based malware threats
Employee awareness strengthens defenses against suspicious archive files
The use of archive files as malware delivery mechanisms is evolving, presenting challenges for Secure Email Gateways (SEGs), new research has claimed.
A recent report by Cofense highlights how cybercriminals exploit various archive formats to bypass security protocols, particularly following a significant update to Windows in late 2023. Traditionally, .zip files have been the most common archive format used in malware campaigns due to their ubiquity and compatibility across operating systems.