Malicious PDFs are rampant

June 16th, 2009

Every day we see new malicious PDFs. They look very innocent, such as this readme.pdf

Checking the file properties shows you how legit it really is…

If you open the PDF in a text editor, such as notepad, you can see the code that exploits Adobe Acrobat Reader, using a JavaScript function.

Interestingly, malicious PDF files are not well detected at all. We are currently working on a new engine to detect malicious documents and hopefully we can get it out quickly and start catching those nasties.

Jerome Segura

This entry was posted on Tuesday, June 16th, 2009 at 1:09 pm and is filed under Malware Trends. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Comments:

(0) comments
|
Add your comments