Gmail Will Block JavaScript File Attachments Very Soon

Gmail Will Block JavaScript File Attachments Very Soon
To sign up for our daily newsletter covering the latest news, hacks and reviews, head HERE. For a running feed of all our stories, follow us on Twitter HERE. Or you can bookmark the Lifehacker Australia homepage to visit whenever you need a fix.

With the rise of malicious JavaScript email attachments, Google has decided to block them all together on its Gmail service. Here’s what you need to know.

Google already blocks the following types of attachments on Gmail to ward off potential malware. Here’s the fill list:


From February 13, files attachments ending in .js (JavaScript files) will be placed on the ban list as well.

“For inbound mail, senders will get a bounce message explaining why the email was blocked,” Google said in an announcement post. “If you still need to send .js files for legitimate reasons, you can use Google Drive, Google Cloud Storage, or other storage solutions to share or send your files.”

[Google G-Suite Blog]


  • Makes sense, though phishers will use other attachments types for their exploits.

    I wonder if Google scans attachments for those trying to obfuscate embedded files that’re banned or permits encrypted attachments as it cannot peer into them?

Comments are closed.

Log in to comment on this story!