Deliver Malware Emails with a Warning Banner

Check Point Email Security now allows administrators to deliver emails containing malware with a clear warning banner.

In some organizations, certain users need access to malicious attachments for investigation, compliance, or analysis purposes.
Instead of blocking or quarantining these emails, security teams can now choose to deliver them with a visible warning. This helps ensure that users understand the attachment is malicious and should be handled with extreme caution.

With this new workflow, emails classified as malware or suspected malware can be delivered to selected recipients with a clear in-message warning banner that highlights the risk. This approach allows security analysts and compliance teams to safely access malicious attachments when needed, while reducing the likelihood of accidental interaction. At the same time, administrators gain greater flexibility to handle high-risk emails by enabling controlled access for specific users without compromising overall organizational security.

To enable this capability, go to the Threat Detection policy and select the User receives the email with a warning workflow under the Malware Attachments or Suspected Malware Attachments sections.

This feature is gradually deployed and should become available in customer portals over the next 7 days.

You may also like

World Password Day 2026: Why “Strong Passwords” Can’t Save You from AI, Infostealers, and the Telegram Underground

SaaS Abuse at Scale: Phone-Based Scam Campaign Leveraging Trusted Platforms

Attackers Continue to Target Trusted Collaboration Platforms: 12,000+ Emails Target Teams Users

Phishing Campaign Leverages Trusted Google Cloud Automation Capabilities to Evade Detection