Attachment Defense Sandboxing

Created by Jason Carreiro, Modified on Thu, 09 Sep 2021 at 10:48 AM by Jason Carreiro


At time different type of attachments may contain payloads that are currently embedded with in the attachment that can cause the download of malware of hijacking of information. There is not safe environment for these attachments to be scanned in a dedicated safe zone before being delivered to a users inbox.


This is where Attachment Defense Sandboxing comes into play where inbound emails are placed in a safe environment and a number of payload tests and examinations are performed. This feature is normally found on our ADVANCED and PROFESSIONAL packages. There is a number of attachments that Attachment Defense Sandboxing perform and the list of attachments are listed below. If any of the below attachments have been detected as a threat will be put into quarantine.

contact, csv, dmg, doc, docm, dot, docx, dotm, dotx, hta, htm, html, iqy, mam, mht, odp, pdf, pot, potx, potm,
ppa, ppam, pps, ppsm, ppsx, ppt, pptm, pptx, pub, rtf, slk, swf, txt, vcard, vcf, vcs, xht, xhtml, xla, xlam, xlm, xls, xlsm, xlsb, xlsx, xlt, xltx, xltm, xps, wmv


Attachment Defense Sandboxing when enabled may delay email delivery for 15 minutes. If you require any assistance please contact Vircom Support.

How To Enable Attachment Defense Sandboxing:

1- Login to ProofPoint Essentials as an administrator.

2- Once logged in you will be presented with a Dashboard and then click ACCOUNT MANAGEMENT then FEATURES and then check the box that reads ENABLE ATTACHMENT DEFENSER SANDBOXING and then click SAVE.

3- To ensure that Attachment Defense Sandboxing has been enabled click on MALICIOUS CONTENT were a drop box will appear. If you see ATTACHMENT DEFENSE as an option, that confirms that the feature is not enabled.