Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: PDF /Launch Trick Spotted in New Attack.

28 Apr 2010   #1
JMH

Win 7 Ultimate 64-bit. SP1.
 
 
PDF /Launch Trick Spotted in New Attack.

Quote:
A new email-based social engineering attack employing the PDF /Launch technique to infect computers with malware has been spotted in the wild. The malicious messages trick users into opening rigged PDF files by claiming they contain the fresh POP3/SMTP connection settings.

At the end of last month, Didier Stevens, an IT security consultant and researcher based in Belgium, revealed a social engineering technique that he dubbed "escaping from PDF." The attack relies on abusing the "/launch" functionality as described in the PDF specification to trick users into allowing malware embedded in PDF files to run.

Even though Stevens did not publicly disclose the technical details of his approach, it wasn't long until cybercrooks figured it out and incorporated it in their malware distribution campaigns. In mid-April, security vendor Sophos reported seeing the first in-the-wild attack using this method.

The new attack is well-constructed and the rogue emails are made to appear as if they are coming from the mail server administrator. Their "From" field is spoofed to display a system@[your_email_domain] address.
More...
PDF /Launch Trick Spotted in New Attack - Malicious emails make false claims of changed POP3/SMTP settings - Softpedia


My System SpecsSystem Spec
.

Reply

 PDF /Launch Trick Spotted in New Attack.




Thread Tools





Similar help and support threads
Thread Forum
Attackers trick 162,000 WordPress sites into launching DDoS attack
Source A Guy
Security News
DDoS Attack, Changed IPs Still Under Attack
I'm being DDoS attacked. My ping was been spiking from 50 to 250+. I've tried changing my IP multiple times and I still was attacked (Note: I own 3 computers and 1 tablet). I've tried disabling startup processes, av scans, and basic rootkit scans and found nothing. However, after I uninstalled...
System Security
Mobile Scareware Spotted in the Wild
Read more at Softpedia
Security News
What classic vehicles have you spotted?
Hello guys, I have seen these classic cars to-day: Rover P6: http://1.bp.blogspot.com/_7SczI5autzw/SvKZLttSoQI/AAAAAAAAFsE/KNdNzdfnAug/s800/VVC_700S_the_last_Rover_P6_off_the_production_line.jpg LandCrab: http://www.ukemergency.co.uk/police/landcrab.jpg Alfa Romeo GTA:...
Chillout Room
UFO Spotted! :O
I won't go as far as saying I saw Aliens from another planet but I did see something very odd. So, I just got into bed about 1am and saw this light moving towards the house like it was going to pass over. I thought "plane! Where's the flashing wing lights?" So I looked at it... No flashing...
Chillout Room
Build 7004 Spotted
Scoop! Intel Software Network Blogs Windows 7 “Pre-Beta” Build 7004
News

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 01:56.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App