When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
These newer formats now account for a growing share of malicious attachments observed in SEG-protected environments.
Between May 2023 and May 2024, Cofense identified 15 archive formats used in malware campaigns.
Certain malware families have a preference for specific archive types.
For example, StrelaStealer and NetSupport RAT are consistently delivered via .zip files.
Password-protected archives pose an additional challenge for SEGs.
This tactic, combined with embedded URLs leading to malware-hosting sites, enables attackers to sidestep traditional defenses.
To counter the growing threat of malware-laden archives, organizations are recommended to adopt a multi-layered defense strategy.
