I hadn’t, but the threat actors are now using ZPAQ files to distribute malware.
A ZPAQ file is an archive file, like .ZIP and .RAR, it is open source and is used on a command line – so not something the average office-based user would need to know about or use. But if the hacker can entice someone to try opening the file, then they are in.
Here is the article about the ZPAQ malware by Xavier Mertens:
Malware Dropped Through a ZPAQ Archive – SANS Internet Storm Center
The attachment that Xavier examined was called “Purchase Order pdf.zpaq” but of course the one that you or your team may receive could be named anything… that is where cyber security awareness training comes in…
You do, do that, don’t you?
Clive Catton MSc (Cyber Security) – by-line and other articles