Largest Directoty of Internet Security Software

PDF Spam Back With a Vengeance

Home Software Threats Security
News		  

PDF Spam Back With a Vengeance
[author:zyk06 Public time:Nov 2, 2007]
According to multiple threat researchers at security vendors, tens of thousands of spam messages were blasted out last week with attached PDF files, which infect the recipients' PCs when viewed. The subject lines of the new crop of PDF spam are finance-related, according to security vendors, using phrases designed to get the recipient's attention such as "your credit report." These e-mails contain no text, simply the attachment.

"When opened, the PDF file uses the CVE-2007-5020 vulnerability via Acrobat Reader and [Internet Explorer 7.0] and downloads further malware from a server in Malaysia," according to security vendor F-Secure's recent blog post. "The target of the malware seems to be to create a botnet of infected machines to be used for further malicious activity."

This summer's PDF spam raised eyebrows because of the sheer volume of the messages and the creative thinking on the part of spammers who figured out these messages could circumvent most antispam filters because they're not trained to read PDF attachments.

Because of the malware now hidden in the attachment, this round of PDF spam is significantly more malicious than August's blasts that were typically pump-and-dump stock messages.

The PDFs attached to those messages hid no malware, but attempted to persuade recipients to buy penny stocks in a little-known company so the stock price would be driven up and the spammer could sell at a profit.

While PDF spam disappeared by September as quickly as it arrived -- it went from 30% of all spam sent on Aug. 7 to less than 1% on Aug. 29 -- few security professionals are expressing surprise at its return.

Spammers will "exploit any vulnerabilities they can, which in Windows is about a quadrillion different places," says John Levine [stet], president of consulting firm Taughannock Networks and co-chair of the Internet Engineering Task Force's Anti-Spam Research Group, adding that he believes this PDF spam blast to be the latest incarnation of the Storm malware. "Using Acrobat has the added advantage that it works regardless of what mail program you use, so even people who use Eudora or Thunderbird could get bitten."

Adobe on Oct. 22 released a security update for versions 8.1 and earlier of Adobe Reader and Acrobat.

Author: Cara Garretson
Source: http://www.pcworld.com/




Printed From:http://www.free-press-release.com/news/200711/1193978945.html
Source:Free Press Release

Similar news >>
  • UNIVERSE Software to launch pdf-FieldMerge for software developers [Sep 24, 2007]
  • PDF Password Cracker Enterprise - How to Remove PDF Password [Sep 4, 2007]
  • PDF Password Cracker Professional - PDF Password Recovery [Sep 4, 2007]
  • Free download the software for decrypting protected PDF files - PDF Password Cracker [Jul 19, 2007]
  • Removing PDF passwords and utilising them unrestrictedly – now also for Adobe 8 documents [Apr 17, 2007]
  • Cracking the Adobe 8 PDF password [Jan 23, 2007]
  • SkySof Software releases PDF Maker DLL - an ActiveX control for software developers to create/edit P [Jun 20, 2005]
  • PDF Password Recovery, lost Adobe Acrobat (PDF) passwords recovery [Jun 30, 2004]
  • PDF Password Recovery - lost Adobe Acrobat (PDF) passwords recovery [Jun 28, 2004]

    		•


    Cookie Cleaner   |    History Eraser   |    Popup Killer   |   Firewall   |   Antivirus   |   Security Encryption   |   UnInstaller   |   Security News
    eTrust Pestpatrol Anti-Spyware   PestPatrol 5   Ad-Aware SE Removal   Ad-Aware SE   Ad-Watch   SpyFighter Cleaner Pro   Free Adware Remover   Spy Sweeper  Webroot Spy Sweeper 
    Copyright © 2002-2007 Internet Security Software.All rights reserved.
    Directory of Internet Security Software - Cookie & Cache Cleaner, History & Evidence Eraser, Popup Killer, Firewall
    Powered By DownloadAtoZ