1. Forum
  2. FidoNet
  3. CONSPRCY

  • Almost a quarter of HTML

    From Mike Powell@1:2320/105 to All on Tue Apr 29 09:40:00 2025
    Almost a quarter of HTML attachments are malicious, research finds

    Date:
    Tue, 29 Apr 2025 12:29:00 +0000

    Description:
    Attackers are increasingly embedding malicious scripts into HTML files.

    FULL STORY

    New research from Barracuda has revealed that a staggering 23% of HTML attachments are marked as malicious, making HTML the most weaponized file
    type - making up over three quarters of malicious files detected, despite a
    low total volume.

    Attackers are increasingly using HTML files for phishing by embedding
    malicious scripts to redirect victims to fake login pages that are created in order to steal credentials or trick users into downloading malware.

    The research also shows that PDFs are less likely to be malicious, despite being the most frequently shared file type via email attachments. Only 0.13%
    of PDFs were found to be harmful, but they are starting to more often contain deceptive links to trick readers onto credential harvesting sites.

    Takeover threats

    Worryingly, 87% of binaries that were detected were malicious, which outlines the need for strict policies against executable files being sent through
    email. The researchers warn that since executables can directly install
    malware , security teams should consider blocking binaries (unless they are absolutely necessary) and ensure all downloads are scanned before execution.

    A fifth of companies experience at least one account takeover incident per month, with criminals gaining access by exploiting weak or reused passwords , phishing, or credential stuffing - all very common tactics that are on the rise, and hackers are getting better at smuggling phishing emails past cybersecurity defenses , so be wary.

    Of these account takeover attacks, 27% involved a suspicious rule change,
    such as auto-deleting incoming security alerts, or setting up email
    forwarding to an external address - helping attackers maintain persistence
    and avoid detection.

    As threats evolve, so should your organizations protection, Barracuda
    advises.

    Scammers are adapting their tactics to bypass gateways and spam filters, so
    its critical to have a solution in place that detects and protects against targeted phishing attacks. Supplement your gateways with AI-powered cloud
    email security technology that doesnt solely rely on looking for malicious links or attachments.

    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/almost-a-quarter-of-html-attachments-ar e-malicious-research-finds

    $$
    --- SBBSecho 3.20-Linux
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)