Email providers struggle to detect modified malicious documents: report

by

Azunta Gaviola

-

5 months ago

Get ready to explore the future of marketing and elevate your business! The ‘What’s NEXT in Marketing 2024-2025’ series is heading to Indonesia, Malaysia, the Philippines, and Singapore. Don’t miss out!

Singapore – While email providers such as Gmail and Outlook showed basic detection capabilities in identifying unmodified malicious document samples, recent study by browser security startup SquareX found that they struggle to identify modified malicious documents manipulated with readily accessible attack tools. 

The findings of the report showed that the widespread dependence on email services for secure communication raised crucial questions on the effectiveness of relying on existing email security measures.

With cyber threats becoming increasingly sophisticated, it was further observed that email providers seem unprepared to detect and intercept these emerging threats, leaving users vulnerable to exploitation.

Addressing the security gap, on the other hand, SquareX has launched an advanced in-browser malicious document scanning feature as part of its browser extension in beta. 

This move underscores the company’s commitment to enhancing web safety and encourages other companies to collaborate in safeguarding users and enterprises from cyber-attacks.

Vivek Ramachandran, founder and chief executive officer at SquareX, said, “The inadvertent discovery of this significant lapse in email security during our product enhancement process was startling.” 

“Our intention in making these findings public is to ignite a dialogue on the urgent need for reinforced security measures and encourage email providers to either elevate their security protocols or transparently acknowledge their current limitations,” he further explained. 

The study conducted involved the analysis of 100 malicious document samples which were categorised into four samples namely: (1) original malicious document samples from MalwareBazaar; (2) slightly altered malicious document samples from MalwareBazaar, such as changes in metadata and file formats; (3) malicious document samples modified using attack tools that have existed for many years; and (4) basic Macro-enabled documents that execute programs on user devices.

Grab your opportunity to harness marketing strategies through the power of WhatsApp in our workshop! Happening on September 26, 2024, in Singapore, register your interest now!
Experience history at MARKETECH APAC’s ‘Marketing Technology Awards 2024! On November 28, live in Singapore, celebrate visionaries shaping Asia-Pacific’s marketing tech across 45 categories. Join us in honouring innovation and excellence! Click here to learn more.

 

Share

RECENT ARTICLES

Workato’s new agentic orchestration platform to transform AI-driven workflows
Unlimit, Shoplazza partnership to streamline cross-border payments, security for APAC retailers
SingPost, Cainiao forge partnership to enhance Singapore’s cargo, logistics networks
Security outranks cost, scalability when choosing cloud providers amongst digital native businesses rank: report
Straits Interactive to advance data protection, compliance with launch of latest AI-driven tool
Ellipse 3

RELATED ARTICLES

Workato’s new agentic orchestration platform to transform AI-driven workflows (1)
2
SingPost, Cainiao forge partnership to enhance Singapore’s cargo, logistics networks
Ellipse 3

FEATURED ARTICLES

Workato’s new agentic orchestration platform to transform AI-driven workflows (1)
2
SingPost, Cainiao forge partnership to enhance Singapore’s cargo, logistics networks

Subscribe to UpTech Media Newsletter

Video Title Here: The Indonesian on-ground activation status

Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos.

Video Title Here: The Indonesian on-ground activation status

Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos.

Video Title Here: The Indonesian on-ground activation status

Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos.