Zendesk scans attachments to tickets in Support and Zendesk Suite after they are uploaded. When malware is suspected, agents can't access the attachment, and end users won't see the attachment. Attachments are also scanned in the Zendesk Support mobile app on both iOS and Android in the new agent experience.

Attachments to tickets originating from standalone Chat subscriptions, social channels, social messaging channels, and Zendesk messaging aren't scanned. However, files attached by agents in the Agent Workspace to tickets originating from the following channels are scanned:

• Web Widget for messaging
• Messaging
• Zendesk Mobile SDK for Messaging

Whether agents see a notification about a blocked attachment and whether admins or agents in custom roles with permissions can override the malware designation depends on the Zendesk product, the agent interface in use, and the channel from which the attachment originated. Specifically, warning labels are only displayed on potentially malicious attachments if email attachments are turned on for the account and agents are working in Support on the desktop or mobile app.

In Support on the desktop:

In the Support mobile app:

If malware is detected in attachments to tickets created with the Submit a request link in the help center, the attachments are hidden from end users.

Malicious attachments to tickets and conversations in Support and Zendesk Suite are inaccessible to agents, but admins and agents in custom roles with permissions can download the flagged attachments and decide whether to allow agents to access them or keep them restricted. Consult your company's security policy before downloading or taking action on malicious attachments.