4/21/2023 0 Comments RarzipHP's threat group says the malware authors spent a great deal of effort making the fake HTML pages look as legitimate as possible (Opens in a new window). However, that password actually decrypts the archive file, exposing the system to malware. When run, they produce a fake web document viewer which has the user input a password. These ZIP and RAR files are often paired with a phony HTML file that masquerades as a PDF. HP Wolf Security, explains that these archives can obscure the dangerous payload from scanners because they cannot see inside the encrypted containers. Sending out malware as archives can make it harder for even savvy internet users to stay safe. That makes malicious archives more common than viruses distributed via Microsoft Word and Excel files, which have been the most popular method for three years running. This method jumped 11 percent over the course of 2022, spurred on by more advanced methods of social engineering (phishing) and HTML fakery. Data from HP Wolf Security shows that encrypted file archives have become the most common way of distributing malware, and your antivirus scanner may be of little help.Īccording to HP's threat analysis group, ZIP and RAR archives accounted for 42 percent of malware attacks between July and September this year. According to a new report, there's a new public enemy number one when it comes to cybersecurity: ZIP and RAR archives. We all, hopefully, learned long ago not to open suspicious Microsoft Office files, which have long been one of the most common vectors for malware infection.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |