Issue:
Microsoft Excel, Word and PowerPoint files including malicious URL were detected in SharePoint, OneDrive and Teams.
Malicious URL in text file(.txt) was not detected.
Also, malicious URL shared in teams chat was not detected.
Are these all expected bahavior?
Resolution:
This feature was implemented in our Security Cloud on February 2024
Regarding this question, our Security Cloud does not look at the file extension, but it looks at the file type.
File Types that are currently supported with this behavior are:
MicrosoftExcel
MicrosoftWord
MicrosoftPowerPoint
PDF
OpenDocumentPresentation
OpenDocumentSpreadsheet
OpenDocumentText
As for PDF file, URLs are needed to be linked with Hyperlink.
Press enter or space after typing in the URL before saving it as PDF, the URL will be linked with hyperlink, which will trigger detection.
Article no: 000045045