KT-EMS Malicious attachments

An attachment is a .html file claiming to be an invoice preview. Safest handling?

Multiple choice — select one answer

Answer choices

  1. a. Quarantine and detonate in sandbox; block HTML attachments at gateway if not business-required
  2. b. Ask the sender to resend as a password-protected executable for integrity, without security or identity team coordination per policy.
  3. c. Rename to .txt so the mail client will not flag it as dangerous content
  4. d. Open in the default browser on a finance workstation to verify the vendor name

Architectural breakdown & explanation

HTML attachments can phish or download payloads; sandbox before any user interaction.

Correct answer(s): a. Quarantine and detonate in sandbox; block HTML attachments at gateway if not business-required

Exam domain: Malicious attachments (25% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — Email Security bank. Run a full timed practice exam with domain-weighted random questions in your browser.