TZUTC: -0500   
   MSGID: 1074.consprcy@1:2320/105 2c761fa1   
   PID: Synchronet 3.20a-Linux master/acc19483f Apr 26 202 GCC 12.2.0   
   TID: SBBSecho 3.20-Linux master/acc19483f Apr 26 2024 23:04 GCC 12.2.0   
   BBSID: CAPCITY2   
   CHRS: ASCII 1   
   Almost a quarter of HTML attachments are malicious, research finds   
      
   Date:   
   Tue, 29 Apr 2025 12:29:00 +0000   
      
   Description:   
   Attackers are increasingly embedding malicious scripts into HTML files.   
      
   FULL STORY   
      
   New research from Barracuda has revealed that a staggering 23% of HTML   
   attachments are marked as malicious, making HTML the most weaponized file    
   type - making up over three quarters of malicious files detected, despite a   
   low total volume.    
      
   Attackers are increasingly using HTML files for phishing by embedding   
   malicious scripts to redirect victims to fake login pages that are created in   
   order to steal credentials or trick users into downloading malware.    
      
   The research also shows that PDFs are less likely to be malicious, despite   
   being the most frequently shared file type via email attachments. Only 0.13%   
   of PDFs were found to be harmful, but they are starting to more often contain   
   deceptive links to trick readers onto credential harvesting sites.    
      
   Takeover threats   
      
   Worryingly, 87% of binaries that were detected were malicious, which outlines   
   the need for strict policies against executable files being sent through   
   email. The researchers warn that since executables can directly install   
   malware , security teams should consider blocking binaries (unless they are   
   absolutely necessary) and ensure all downloads are scanned before execution.    
      
   A fifth of companies experience at least one account takeover incident per   
   month, with criminals gaining access by exploiting weak or reused passwords ,   
   phishing, or credential stuffing - all very common tactics that are on the   
   rise, and hackers are getting better at smuggling phishing emails past   
   cybersecurity defenses , so be wary.    
      
   Of these account takeover attacks, 27% involved a suspicious rule change,    
   such as auto-deleting incoming security alerts, or setting up email    
   forwarding to an external address - helping attackers maintain persistence    
   and avoid detection.    
      
   As threats evolve, so should your organizations protection, Barracuda    
   advises.    
      
   Scammers are adapting their tactics to bypass gateways and spam filters, so   
   its critical to have a solution in place that detects and protects against   
   targeted phishing attacks. Supplement your gateways with AI-powered cloud   
   email security technology that doesnt solely rely on looking for malicious   
   links or attachments.   
      
   ======================================================================   
   Link to news story:   
   https://www.techradar.com/pro/security/almost-a-quarter-of-html-attachments-ar   
   e-malicious-research-finds   
      
   $$   
   --- SBBSecho 3.20-Linux   
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)   
   SEEN-BY: 105/81 106/201 128/187 129/305 153/7715 154/110 218/700 226/30   
   SEEN-BY: 227/114 229/110 111 114 206 300 307 317 400 426 428 470 664   
   SEEN-BY: 229/700 705 266/512 291/111 320/219 322/757 342/200 396/45   
   SEEN-BY: 460/58 712/848 902/26 2320/0 105 3634/12 5075/35   
   PATH: 2320/105 229/426