Bleeping Computer

Clever ‘File Archiver In The Browser’ phishing trick uses ZIP domains

A new 'File Archivers in the Browser' phishing kit abuses ZIP domains by displaying fake WinRAR or Windows File Explorer windows in the browser to convince users to launch malicious files. Earlier ...
Dark Reading

Google's .zip, .mov Domains Give Social Engineers a Shiny New Tool

Two new top-level domain names — .zip and .mov — have caused concern among security researchers, who say they allow for the construction of malicious URLs that even tech-savvy users are likely to miss ...
Neowin

Microsoft apparently now scanning password-protected ZIP files for malware and virus

Microsoft has apparently begun scanning encrypted and password-protected ZIP files now on SharePoint. The change was discovered yesterday by a senior Security Researcher and Analyst. It looks like ...