Is there a way to assure that email attachment could be opened in a safe manner

[MikeWill]

I received several unsolicited email messages, see a snapshot.

I'm not sure if it's safe to open the attachment (a file name: google.com!th4u.com!1679616000!1679702399.xml).

[NextG]

If they are unsolicited and you don’t know the sender…. why would you try to open any attachment.? I think you might need someone to rap their knuckles on your head, to see if there is anyone in there.

If using Windows 10 Pro, it has a Sandbox. Otherwise; https://sandboxie-plus.com/downloads/

[Upnotover]

Yep, like answering the phone to numbers you don't know, answering the door to unexpected callers.....don't.

[KhunLA]

if not on your contact list, simply delete, unless expecting something, then you should know that it is for you.  

 

Mouse over address will tell you who sent it.

[RayWright]

Doesn't your Anti-Virus software pick this up?

[MikeWill]

To clarify...in short:

Recently, my MX records were changed by someone. I noticed that a few days later, and changed it back to Google as it is my email service provider. I also changed my password to cPanel.

 

I do have an antivirus (Bitdefender), but I'm not 100% sure it can protect me. 

 

[KhunHeineken]

When in doubt, delete. 

 

Then, delete from your deleted folder as well. 

 

If they persist, put it in your blocked list. 

[MikeWill]

Does someone know what is DMARC?

(see the new post by that name)

Edited March 31, 2023 by MikeWill

[JustAnotherHun]

To be save, run your mail program (I use Thunderbird) in a virtual machine. If something goes wrong, you delete it and copy it back from your backup storage. Takes less than 3 minutes.

Edited April 19, 2023 by JustAnotherHun

[KannikaP]

On 3/29/2023 at 4:09 PM, MikeWill said:

To clarify...in short:

Recently, my MX records were changed by someone. I noticed that a few days later, and changed it back to Google as it is my email service provider. I also changed my password to cPanel.

 

I do have an antivirus (Bitdefender), but I'm not 100% sure it can protect me. 

 

And do you have an app which will keep the font on your posts at the same, readable, size please?

[h90]

We have a laptop...if there are doubts I copy the attachment on it, disconnect it from the network and open it there.
But first we look the email.....If the bank does not know my name it is most probably not my bank, if the attachment is not ending in .pdf and there is no very clear reason why not it will be deleted.

[h90]

31 minutes ago, JustAnotherHun said:

To be save, run your mail program (I use Thunderbird) in a virtual machine. If something goes wrong, you delete it and copy it back from your backup storage. Takes less than 3 minutes.

and the virtual machine can not access your main computer (you are not sharing your files with it)

[JustAnotherHun]

2 minutes ago, h90 said:

and the virtual machine can not access your main computer (you are not sharing your files with it)

Correct. No "shared folders" between host and VM.

btw: .pdf-files are a risk aswell.

[h90]

Just now, JustAnotherHun said:

Correct. No "shared folders" between host and VM.

btw: .pdf-files are a risk aswell.

I would not open unknown .pdf on my office computer. And I saw attachments like filename.pdf.exe which on a quick look in Thunderbird could trick someone. But can do a .pdf opened in for example sumatrapdf do some harm? I think not but still would not risk it.

[ozimoron]

Use linux and don't worry about it.

[Doctor Tom]

McAfee will scan all e mails and downloads before you open them.  Just use settings to select that option, that is, if you have McAfee of course .  

[JustAnotherHun]

15 minutes ago, h90 said:

But can do a .pdf opened in for example sumatrapdf do some harm? I think not but still would not risk it.

I don't know sumatrapdf and never had a problem with .pdf. The risk should be quite low, but:

 

"A PDF is not an executable file, so it cannot infect your machine while sitting idle on your hard drive — the malware in a PDF needs to be interpreted and executed through PDF reader software. "

https://clario.co/blog/can-pdf-contain-virus/

[h90]

20 minutes ago, ozimoron said:

Use linux and don't worry about it.

yes because I would be unable to get it opened ????
(just had the problem that I could not connect a linux machine to connect to Wifi....because of some bug)

[h90]

5 minutes ago, JustAnotherHun said:

I don't know sumatrapdf and never had a problem with .pdf. The risk should be quite low, but:

 

"A PDF is not an executable file, so it cannot infect your machine while sitting idle on your hard drive — the malware in a PDF needs to be interpreted and executed through PDF reader software. "

https://clario.co/blog/can-pdf-contain-virus/

I see the bigger risk in having an email from your bank which looks OK and the statement.pdf.exe file name is not shown full or I am just too quick in clicking and open a file which isn't a pdf by mistake

[n00dle]

33 minutes ago, h90 said:

.if there are doubts I copy the attachment on it, disconnect it from the network and open it there.

how will that stop the laptop from becoming infected or protect your environment when you reconnect?   

[JustAnotherHun]

2 minutes ago, h90 said:

I see the bigger risk in having an email from your bank which looks OK...

agree.

[n00dle]

9 minutes ago, JustAnotherHun said:

I don't know sumatrapdf and never had a problem with .pdf. The risk should be quite low, but:

 

"A PDF is not an executable file, so it cannot infect your machine while sitting idle on your hard drive — the malware in a PDF needs to be interpreted and executed through PDF reader software. "

https://clario.co/blog/can-pdf-contain-virus/

https://www.adobe.com/acrobat/resources/can-pdfs-contain-viruses.html

[fdsa]

Yes, PDF, DOC, RTF, and all other document formats could contain malware.