Skip to main content
  1. Home
  2. Computing
  3. News

Digital Trends may earn a commission when you buy through links on our site. Why trust us?

Microsoft just gave you a new way to stay safe from viruses

Add as a preferred source on Google

Microsoft has just taken a vital step towards better protecting your devices from malware, and it’s one that could stop viruses dead in their tracks. Interestingly, though, the Redmond giant seems to have made no mention of the change, despite its significance.

The new policy might sound minor on the surface: Microsoft’s SharePoint cloud storage service can apparently now scan files that are encrypted or password-protected. Previously, this wasn’t thought to be possible.

A dark mystery hand typing on a laptop computer at night.
Andrew Brookes / Getty Images

The importance of this move lies in the nefarious tactics of hackers and malware writers. The fact that antivirus apps have struggled to read password-protected files for so long has made them an attractive method of attack. Now that SharePoint can penetrate into their murky depths, you should have a much better idea of whether the file you uploaded can be trusted.

Recommended Videos

The change was noticed by Andrew Brandt, Principal Researcher at cybersecurity firm Sophos. Brandt stumbled upon the new policy after it affected their own SharePoint directory, which contained an archive of malware strains stored in password-protected zip files.

Unfortunately for Brandt, the update was not entirely welcome. As they explained on their Mastodon page, “a couple of password-protected Zips are flagged as “Malware detected” which limits what I can do with those files — they are basically dead space now.”

“While I totally understand doing this for anyone other than a malware analyst,” Brandt continued, “this kind of nosy, get-inside-your-business way of handling this is going to become a big problem for people like me who need to send their colleagues malware samples.”

While that is undoubtedly a frustrating development for malware researchers using SharePoint in this manner, it is surely a good thing for everyday users who might upload infected files without knowing the contents of the encrypted files.

A quiet change

Window's new Microsoft Security Experts program works to protect users from cybercrime using.
Windows

Brandt sheds some light on what SharePoint will do with password-protected files that it deems to be malicious, although it’s not immediately clear from their message how user actions are limited by Microsoft.

However, a Microsoft support page explains that its Safe Attachments feature will scan files in SharePoint, OneDrive, and Teams. Files determined to be malware are “locked,” which means “people can’t open, copy, move, or share” them. You can still view and delete the files, though.

Yet the support page doesn’t mention encrypted or password-protected files, and Microsoft has made no announcement of the policy change on its security blog. That’s a touch surprising given how important the new stance could be.

Still, it’s good to see Microsoft take action on password-protected files that have long eluded close inspection due to their locked-up nature. Although it might be an inconvenience to security researchers, it is no doubt a boon for everyday users. Hopefully, Microsoft can quickly find a solution that doesn’t impede researchers’ work.

Alex Blake
Alex Blake has been working with Digital Trends since 2019, where he spends most of his time writing about Mac computers…
macOS clipboard app Maccy has a fake out there stealing passwords
PamStealer malware is disguising itself as Maccy to target Mac users
Depicting of the Maccy clipboard app for macOS on a laptop with letters inb the background.

A fake version of Maccy, a popular clipboard manager for macOS, is being used to deliver a newly discovered Mac malware strain called PamStealer. Researchers at Jamf say the malware impersonates the real open-source app, but its actual purpose is to steal data and capture a victim’s login password.

PamStealer arrives as a disk image containing an AppleScript file that impersonates Maccy. Once the user opens that file, macOS launches it in Script Editor, where the on-screen instructions tell them to press Command-R. To someone expecting a normal app installer, that may look like an odd setup step. In reality, that action runs hidden malware code and starts the attack.

Read more
A new technology teaching drones to feel pain could stop your self-driving car from harming itself
Drones first, autonomous cars next. A pain-sensing system that detects failure before it happens has real stakes for self-driving vehicles.
Transportation, Vehicle, Car

When you sprain your ankle in the middle of a run, your body sends a pain signal to your brain, forcing you to stop. Essentially, the ability to sense pain stops you from pushing through the injury and causing further self-harm.

Researchers at Delft University of Technology and Wageningen University have applied this exact concept to drones, giving them a digital equivalent of a nervous system that recognizes a faulty part and triggers a pain-like warning signal. What's even more interesting is that the technology could find use in self-driving cars.

Read more
Claude Fable 5 is leaving subscriptions, but maybe not for good
High demand is pushing Claude Fable 5 out of subscriptions for now
Claude Fable 5 and Claude Mythos 5 Official Render

Anthropic’s most advanced publicly available Claude model is still leaving standard subscription access after July 7, but the company is now trying to calm fears that the move is permanent.

Fable 5 recently returned to Claude after drawing scrutiny from the U.S. government. Anthropic said it would be included on Pro, Max, Team, and select Enterprise plans for up to 50% of weekly usage limits through July 7. After that date, the model is set to move to usage-credit billing, meaning users will pay for access outside their regular plan limits.

Read more