Forum Discussion

Phraramond's avatar
Phraramond
Copper Contributor
Mar 26, 2021

Security & Compliance Malware Quarantine HTM attachments Nameless.htm

We have a Malware policy to block incoming htm and html attachments, just recently we have started to see incoming emails blocked because of an attachment called Nameless.htm.   Examples ...
admin
AshwinPai's avatar
AshwinPai
Copper Contributor
Feb 20, 2023

Not sure if this is still an issue ,we resolved it & I thought I would share the solution

We encountered this issue in Feb of 2023.

1. Do not add .htm & html to the list of files in malware filter.

2. Create a transport rule as shown below.

Works like a charm

  • bumpyballs's avatar
    bumpyballs
    Copper Contributor
    Mar 15, 2023

    AshwinPai 

     

    I wouldn't recommend doing this. How long do you think it will take for bad guys to figure this out and start naming their malicious attachments "Nameless.htm"?

    • AshwinPai's avatar
      AshwinPai
      Copper Contributor
      Mar 15, 2023

      bumpyballs 

      Agreed , but I cannot see what else to do. MS and Apple are both saying it is the others problem.

      This at least stops many

      • bumpyballs's avatar
        bumpyballs
        Copper Contributor
        Mar 15, 2023

        AshwinPai 

         

        Fair enough. We wanted to maintain a safer approach so what I did instead is leave htm and html in the block list, but created a rule that notifies the user when (s)he receives a message with nameless.htm attachment.

Resources