The first warning about malicious code hidden in the .zip file

Security researchers have discovered vulnerabilities in common file formats, including .zip. These formats can be used to hide the detection of antivirus software and transfer malicious code to the victim's computer .

According to Mario Vuksan, president of ReversingLabs, eight vulnerabilities were discovered on the .zip files (Microsoft Office supported), along with seven other vulnerabilities in .7zip, .rar, .cab and .gzip formats. These vulnerabilities can be used by an attacker to hide malicious code to bypass the antivirus software's eyes. They will be attached to emails that antivirus software is hard to detect.

The file will be used directly via Gmail or Hotmail because they are a reliable format. Antivirus software cannot detect malicious hidden parts in those formats. Each time the file is opened, the malicious code will enter the system.

Vuksan said that he and other researchers have reported this phenomenon to antivirus software manufacturers and other security so they can update the product sold. The findings will also be presented by him and two other partners at the Black Hat Europe Security Conference in Barcelona today (April 15).

He also plans to release a tool called NyxEngine so that companies can use to scan online files for questionable properties and can find malicious code hidden therein.

In addition to being used to attack computers, these vulnerabilities can be used to hide secret messages into other seemingly harmless files. Typically, they can be hidden in images and photos when sent.