Hidden Dangers of HTML Attachments
Date: May 11, 2016
Over the last six to nine months, we’ve seen a lot of .DOC and .JS file attachments as malicious attachments, used for mainly ransomware attacks.
However, our researchers have spotted an up and coming trend; malicious HTML “attackments” that are used for credentials phishing. Cyber criminal are using .HTML attachments to spoof bank login pages, popular online services and secure messages from financial institutions.
There are a couple reasons why the cyber criminals have taken a liking to HTML
1. Reduced chance of AV detection
2. User familiarity
Although your users and employees may not recognise the potential threat of .HTML attachments, that doesn’t necessarily mean they aren’t familiar with them. HTML attachments are commonly used by banks and other financial institutions to deliver secure documents and messages as well as to enable users to conduct banking business in a secure environment.
User Education is your best defence:
Inevitably, your filters are going to miss some of these, and we suggest you send the following to your employees as part of your ongoing awareness campaign:
Internet criminals never stop trying to get past our spam filters and trick you into clicking on phishing links or opening malicious email attachments.
This is a warning against a new type of attack that uses an HTML attachment which tries to scam you into entering your user name and password.
HTML attachments are often used by banks for secure messages, so you might think that these are always safe. They are NOT. If you get an email with an HTML attachment, be just as careful as always and do not open it unless you have asked for it, or have verified with the sender that the attachment is legitimate.
Remember: Always Think Before You Click!
Regular Security Awareness Training is critical to ensuring that your employees recognise and correctly respond to the actual threats they will encounter. Find out how affordable this is for your organisation – less than £1/user/month.
If you do not like to click on redirected buttons, here is a link you can cut and paste: