Vulnerability Alerts
SANS
 
Microsoft
 
CERT/CC
 
 
Latest Comments
"I feel it with you guys. These irritating interruptions on privacy MUST be stopped. It is a ..."
on Yahoo and Microsoft take aim at lottery scams
by Jan Wilmans | Dec 2, 2008 7:11 PM
 
"My AVG WILL NOT UPDATE"
on AVG update deletes critical Windows file
by James Downs | Dec 2, 2008 5:58 AM
 
"Concerned man's comments seem to intimate that if I'm using agents all will be well but the ..."
on Shavlik Technologies to broaden its patch management offerings
by Werner K | Nov 26, 2008 8:36 PM
 
"That will enhance Microsoft Office system, including SharePoint - good platform for enterprise ..."
on Companies have security to consider with in-the-cloud Office
by SGE | Nov 25, 2008 3:29 PM
 
"how many users allow per session? because the digital persona password manager allows only 10 ..."
on DigitalPersona Pro Workstation/Pro Server
by Daniel | Nov 25, 2008 12:14 AM
Application Flaws

Experts warn of new PDF attacks

  • Email a Friend
  • Print Page
Related Articles
By Shaun Nichols
Sep 29, 2008 12:04 PM
Tags: Experts | PDF | attacks
Security organisations are warning users to be vigilant following the discovery of a new crop of tools for exploited PDF flaws.

The US Computer Emergency Response Team (US-Cert) and Secure Computing issued alerts after several exploit tools were found to be making the rounds in the cyber-crime underworld.

The toolkits are especially dangerous due to their ability to avoid security systems, according to Secure Computing.

The latest attacks catalogue infected users and refrain from sending attacks more than once, making it more difficult for security vendors to track down the source of the attacks and prevent further infections.

In addition to new tools, researchers have also found PDF exploit components being added on to existing attack systems.

The risk is further compounded by the fact that PDF files are commonly found among the home and enterprise worlds and are not always considered to be as risky as other formats by many users.

"The Portable Document Format is one of the file formats of choice commonly used in today's enterprises, since it is widely deployed across different operating systems," the company noted.

"But on a down-side this format has known vulnerabilities which are exploited in the wild."

US-Cert recommends that users protect against the attacks by avoiding untrusted or unsolicited downloads and email attachments.

The organisation also recommends that users keep antivirus and system software up-to-date with the latest patches.

Copyright © 2008 vnunet.com

 
Ads by Google
Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 
Tripwire - Click here to win an iTouch
 
 
Vulnerabilities & Exploits Whitepapers
 
Popular Tags
attacks bank caution cloud computing cyber experts exploit federal files government hackers identified locklizard malicious name pdf russia safeguard security