diff --git a/exposures/backups/zip-backup-files.yaml b/exposures/backups/zip-backup-files.yaml
index d5e647afda..f616e24b6c 100644
--- a/exposures/backups/zip-backup-files.yaml
+++ b/exposures/backups/zip-backup-files.yaml
@@ -17,6 +17,7 @@ requests:
     attack: pitchfork
     payloads:
       EXT:
+        - "tar"
         - "7z"
         - "bz2"
         - "gz"
@@ -47,6 +48,8 @@ requests:
     matchers:
       - type: binary
         binary:
+          - "7573746172202000" #tar
+          - "7573746172003030"  #tar
           - "377ABCAF271C"  # 7z
           - "314159265359"  # bz2
           - "53514c69746520666f726d6174203300"  # SQLite format 3.