This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ Log in to ask a question

Compliance rule to block ZIP file attachments

ddelboccio
Contributor III

‎09-24-2024 09:10 AM

Looking for opinions here please...........

I've had a longstanding attachment compliance rule in place for Gmail to send any messages with a ZIP file attachment to quarantine for review.

I did this in the name of blocking email attachment viruses.

I see 3-4 emails come through per month, with legitimate ZIP files attached, and I release them out of quarantine.

My question is this...is this still a "thing"? 

Do virus attached ZIP files still happen?

I know this setup is not a bad thing, but I'm just curious if anyone else does this, and whether they have ever actually stopped a bad ZIP from going through?

Topics:
0 Kudos
Reply
6 REPLIES 6

kaned
Contributor II

‎09-24-2024 09:13 AM

I don't have that rule set up (though I'm interested in the concept).

We have sandboxing and other security settings enabled (actually, I think all of them Google offers)

0 Kudos
Reply

ddelboccio
Contributor III
In response to kaned

‎09-24-2024 09:15 AM

I too have the sandboxing feature enabled, so I was truly wondering whether THAT would catch and/or block any bad ZIP files. 

In theory, shouldn't it?

My compliance rule has been in place since BEFORE the sandboxing features came out.

0 Kudos
Reply

panderson
Contributor III

‎09-24-2024 01:05 PM

I think we still have the zip extension blocked, along with Exe, bat, etc.  I just tell them to rename the extension to something else.  That way people don't accidentally open something they shouldn't.  Most the people who are receiving zip files know enough on how to change them or use "Open with". 
I am curious about the sandbox feature. Do you use the rules or just enable it for all users?

 

 

0 Kudos
Reply

ddelboccio
Contributor III
In response to panderson

‎09-25-2024 05:03 AM

I simply enable the sandbox feature for all.

0 Kudos
Reply

Justin_W
Contributor II

‎09-24-2024 01:17 PM

We block Exes and Zips yet (as well as others I think).

 

It's less common than before, but I still think keeping Email from being a file transfer service is good practice.  There are too many good and readily available file hosting platform (Google Drive!) that offer additional features and security to regress back to files via Email.

0 Kudos
Reply

Dean_Mantz
Contributor

‎09-24-2024 07:19 PM

We continue to quarantine ZIP files as well. I have been in several Cybersecurity webinars over the last few months and it is not uncommon to hear presenters recommend ZIP file filtering. 

Reply
  • © 2023 Google. All rights reserved.
  • Privacy Policy
  • Terms of Service
  • Community Guidelines