Good news everyone, yesterday Office 365 finally caught the piece of malware we've been using in our demos for the past 5 months. The bad news however is that it took us another 5 minutes to find a new piece of malware that goes undetected for our next demos.
Here's the story:
For the last 5 months we used in our demos a piece of malware we received from Check Point that they caught with Sandblast at one of their Firewalls. Doing a live customer demo always carries the risk of unknown and so we always started with a disclaimer that one day we expected Microsoft and Google to detect and block this malware and that today might be that day.
Well, yesterday was finally that day. Microsoft caught it. It still goes through Gmail but one might assume that as the days of "zero-day" for this malware are over, Google will detect it shortly.
Now we needed to find a new malicious file for our demo. It took us less than 5 minutes to find that new file. In case you're interested, here's a recording of how easy it was to find it: