Spammers target PDF exploit again
By Stuart Turton
Posted on 24 Oct 2007 at 08:07
Days after Adobe patched a major security vulnerability in its Reader and Acrobat software, hackers are bombarding inboxes with malware infected PDFs intended to hijack the computer of users who've yet to update.
The surge was highlighted by Symantec in its blog, which identified the malware as Trojan.Pidief.A, which it says has been "spammed out in targeted attacks on specific business organizations."
The Trojan will most likely arrive through email with a subject such as "invoice", "statement" or "bill" and contain just a PDF file, named along similar lines. If the PDF is opened and the vulnerability exploited, it will run code to lower Window's defences and download and spread further malware.
The vulnerability was discovered on September 20 by the Gnucitizen website and only affects users running Windows XP and Internet Explorer 7.
Adobe has already released patches..
From around the web
advertisement
- Laptop bag reviews: nine tested
- Sony VAIO T Series Ultrabook review: first look
- Revealed: the military standards and robots HP uses to test its laptops
- Windows 8: multi-monitors and double standards?
- Why is TalkTalk's year-old porn filter suddenly big news?
- Why are laptop screens so far behind mobiles?
- HP EliteBook Folio review: first look
- The shoebox-sized all-in-one printer
- Forget the Ultrabook: here comes the HP Sleekbook
- HP Spectre XT review: first look
- Why you have to be left in the dark on OS patches
- Is Microsoft mismanaging Windows on ARM?
- Dealing with spam surrogates
- Why 3G broadband can be better and cheaper than ADSL
- Is Twitter bad for business?
- Publishing your email address isn't a security disaster
- Why you'll need a fax machine to develop iOS apps
- Learning to adapt to the mobile web
- Why you shouldn't use WPS on your Wi-Fi network
- Disabled users suffer when software breaks the rules
advertisement
