A new archive-evasion method dubbed Zombie ZIP is drawing urgent attention from the security industry after CERT/CC published Vulnerability Note VU#976247 on March 10–11, 2026, assigning it the identifier CVE-2026-0866. The technique allows attackers to craft malformed ZIP archives that slip through antivirus and endpoint detection and response (EDR) systems without triggering a single alert — not by exploiting a bug in any one program, but by exploiting the way security engines interpret ZIP metadata.

How the Deception Works

ZIP archives contain a header field called the compression method, which tells software how to handle the data inside. Normally, a value of Method=0 means the file is stored uncompressed — raw, scannable bytes. A Zombie ZIP file declares Method=0 in its header, but the actual payload is DEFLATE-compressed data in disguise.

“AV engines trust the ZIP Method field. When Method=0 (STORED), they scan the data as raw uncompressed bytes. But the data is actually DEFLATE compressed — so the scanner sees compressed noise and finds no signatures.”

— Chris Aziz, Security Researcher, Bombadil Systems

The result: the antivirus engine reads the DEFLATE-compressed bytes as if they were ordinary file contents, encounters only incomprehensible noise, and reports the archive as clean. The hidden payload — which could be a malware dropper, ransomware, or a remote access tool — goes completely undetected.

What Is — and Isn’t — at Risk

Early coverage of Zombie ZIP overstated the danger to everyday users. A critical nuance: standard decompression tools do not silently execute the hidden payload.

Tools like 7-Zip, WinRAR, the system-native unzip utility, and Python’s zipfile library enforce integrity checks. When they encounter a Zombie ZIP, they generally crash out with a CRC error or an “unsupported method” message rather than quietly releasing the hidden contents. No standard tool will transparently unpack the malicious payload for you.

The real danger sits upstream — in the automated security infrastructure that most users never see. Email gateways, cloud sandboxes, and EDR products often scan ZIP files automatically in the background. If those engines rely on the archive’s declared method field without cross-checking the actual data stream, they will pass a Zombie ZIP as clean. An attacker delivering such a file still needs to separately deliver and execute a custom loader on the target system — but bypassing scanner detection is itself a significant tactical win.

Industry Response

Bombadil Systems published a proof-of-concept repository on GitHub alongside sample archives and technical documentation. Cisco confirmed that ClamAV, one of the most widely deployed open-source antivirus engines, cannot properly scan this archive type — though Cisco characterized the matter as a hardening issue rather than a critical vulnerability.

CERT/CC’s advisory calls on antivirus and EDR vendors to make three specific changes: validate declared compression method fields against the actual data stream; add detection mechanisms for structural inconsistencies within archives; and implement more aggressive archive inspection modes that do not defer to header metadata alone. No major vendor has issued a patch as of publication time.

What You Should Do Right Now

• 01 If your extraction tool throws an “unsupported method” or CRC error when opening an archive from an unknown sender, delete the file immediately — do not attempt to open it with alternative tools or custom utilities.
• 02 Do not trust “clean” scanner results for ZIP files from untrusted sources. Until vendors patch their engines, a green light from your antivirus does not guarantee a ZIP is safe.
• 03 Enterprise teams should configure Secure Email Gateways to quarantine malformed or unscannable archive attachments at the perimeter before they reach endpoints.
• 04 IT and security teams should enforce application control policies (AppLocker, WDAC) to prevent unauthorized custom loaders from executing in user space — this blocks the final step needed to detonate a Zombie ZIP payload.
• 05 Monitor vendor advisories for AV and EDR engine updates that explicitly reference CVE-2026-0866 — aggressive archive inspection modes must be confirmed active after patching.