I more meant that I would check that the file structure had a signature that was at least kind of intelligible. Like in this case, the size was way out of whack. If we are expecting 2 MBs of files per transaction, lets flag up a 5 GB transfer as no-go. Without knowing exactly what kind of files were involved, its hard to say what the right signature to look for is.
But this is all with hindsight of having read the story, which is why I say I "hope" that I would have done that. But really, who knows.