Watch Out For PDF Malware
October 30, 2007 | by Christopher Nickson
F-Secure has noticed new spam sending out malware in a .pdf attachment.
F-Secure, the Finnish security firm, has detected malware being distributed by a .pdf file attached to spam e-mails.
Marked “Your Credit Report,” “Your Credit File,” “Personal Financial Statement” or “Balance Report,” the mails contain no body, simply an attachment marked “report.pdf.” If downloaded, it exploits a vulnerability in both Acrobat Reader and Internet Explorer 7 to download further malware from a Malaysian server, which F-Secure says makes the infected computer part of a botnet.
“We’re worried about this case,” said Chief Research Officer Mikko Hypponen in a statement, “as PDF attachments are typically not filtered at e-mail gateways. Executable files are now stripped almost everywhere, but PDF is stripped almost nowhere. Also, a security update for Acrobat Reader was just made available a few days ago, so there are tons of users who haven’t had a chance to update yet.”
Post Your Comment...Comments
Comment on this article
Please keep your comments relevant to this article. Email addresses are not displayed, they are only required to verify you are human.
When you submit your comment, an email will be sent to your email address with a confirmation link. Once you have clicked on that confirmation link your comment will be posted.
HTML is not allowed.
RSS Feed
Be the first to comment on the article!