Network Security News

Hackers hone in on PDFs

Friday, September 26, 2008

Network security teams have warned businesses to be on the lookout for a number of file-based attacks preying on exploits in Adobe's Acrobat file format PDF.

The warnings came as a number of rootkits were found circulating in the wild which would allow attackers to breach network security by prompting users to download files which will destabilize systems.

Researchers at the US Computer Emergency Response Team, warned that the scope of the network security attacks may be broadened by the widespread existence of the documents among consumer and business circles and the perception that they are a fairly stable file format.

"The PDF is one of the file formats of choice commonly used in today's enterprises, since it is widely deployed across different operating systems," the group explained.

Earlier this month, Adobe prevented web security researchers from disclosing details of a wide-reaching vulnerability affecting a number of Adobe products, in addition to many web browsers.

The company urged the analysts to hold back on detailing the exploit until a patch had been developed.ADNFCR-1765-ID-18799181-ADNFCR

Related News:

Zeus botnet performs MySpace spam campaign to spread itself further - 11.20.2009
A sophisticated Trojan dubbed "Zeus" has sent a flood of email messages to MySpace users in an attempt to propagate itself onto more computers, according to researchers at the University of Alabama at Birmingham.

Experts dissect Chrome OS security features - 11.20.2009
Yesterday's release of Google's groundbreaking new cloud-based operating system, Chrome OS, has caused a stir in techie circles, with experts of all stripes rushing to examine the product and issue their judgments.

Microsoft counts Chrome coup with discovery of security flaw - 11.20.2009
Security researchers at Microsoft recently discovered a security vulnerability in Google's controversial Chrome Frame for Internet Explorer, a browser plug-in that simulates Chrome functionality within an Internet Explorer session.

iPhone user sues games maker, claiming to have found hidden spyware - 11.18.2009
An iPhone gamer filed a federal lawsuit against mobile game programmer Storm8 today, alleging that the company violated his privacy by including hidden code in its games that gathered his personal information without permission.

Government watchdog warns of possible IT leaks at Los Alamos - 11.16.2009
The Government Accountability Office has issued a report on data security at the Los Alamos National Laboratory which says that sensitive and highly classified information is vulnerable to outside access.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now