We all depend heavily on anti-virus scanners, they are a primary tool on our local machines and servers to combat the simplest of cyber attacks – sending us malware via email. Consequently any techniques developed by bad actors to get malicious packages through those scanner is a major concern.
There is an article on the Sans Internet Storm Diary by Didier Stevens showing what seems to be a very simple coding technique that may help malware avoid anti-virus software detection.
Phishing ZIP With Malformed Filename (sans.edu)
This goes to show that anti-virus software may be your primary technical defence but users should be seen as the front line defence. With great training and support they can spot and defend against the things that scanners cannot recognise.
We have developed a two hour online training course that can prepare you and your teams to cope with the threat delivered by email.
Want to know more about why human defences are so important to your company? Here is a short article explaining more:
Clive Catton MSc (Cyber Security) – by-line and other articles
