Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Researcher Finds Flood of PDF Spam
Malicious PDF files being spammed out in volume
1 Min Read
SAN JOSE, Calif. -- F-Secure has been monitoring a large mailing of malicious PDF files. These PDF files exploit a recent vulnerability. When such PDF files are viewed on vulnerable machines, they get infected.
An unknown party has been sending out tens of thousands of mails with subject-lines like:
Your credit report
Personal Financial Statement
Your Credit File
Balance Report
The mails contain no mail body, only an attachment called "report.pdf". When opened, the PDF file uses the CVE-2007-5020 vulnerability via Acrobat Reader and IE7 and downloads further malware from a server in Malaysia. The target of the malware seems to be to create a botnet of infected machines to be used for further malicious activity.
"We're worried about this case, as PDF attachments are typically not filtered at email gateways", says F-Secure's Chief Research Officer Mikko Hypponen. "Executable files are now stripped almost everywhere, but PDF is stripped almost nowhere. Also, a security update for Acrobat Reader was just made available few days ago, so there are tons of users who haven't had a chance to update yet".
Read more about:
2007About the Author
You May Also Like
More Insights
