Hackers hone in on PDFs
Friday, September 26, 2008
Network security teams have warned businesses to be on the lookout for a number of file-based attacks preying on exploits in Adobe's Acrobat file format PDF.
The warnings came as a number of rootkits were found circulating in the wild which would allow attackers to breach network security by prompting users to download files which will destabilize systems.
Researchers at the US Computer Emergency Response Team, warned that the scope of the network security attacks may be broadened by the widespread existence of the documents among consumer and business circles and the perception that they are a fairly stable file format.
"The PDF is one of the file formats of choice commonly used in today's enterprises, since it is widely deployed across different operating systems," the group explained.
Earlier this month, Adobe prevented web security researchers from disclosing details of a wide-reaching vulnerability affecting a number of Adobe products, in addition to many web browsers.
The company urged the analysts to hold back on detailing the exploit until a patch had been developed.
Related News:
Cyber criminals exposed medical records - 3.8.2010
More than 18,000 patients, whose medical information is stored on the computer systems of five doctors in Torrance, California, were potential victims of identity theft in September when cyber criminals penetrated the doctors' networks, according to the Los Angeles Times.
McAfee advises companies to boost web security relating to source code - 3.4.2010
At the RSA Conference, currently taking place in San Francisco, McAfee released a report indicating that companies regularly use too few web security protocols when protecting intellectual property such as source code.
False social networking attacks provides teachable moment for web security - 2.25.2010
A unique tool developed to prevent the spread of malware from social networking websites has been recommended Processor.com, a web and network security news provider.
With global web security under siege, exports point to problems - 2.25.2010
In 2009, Garlik, a United Kingdom-based web security company, reported a 207 percent increase in malware use to overtake bank accounts. Recent events have also shown vulnerability in corporate, private and governmental web security systems.
Kaspersky reports malware growing more sophisticated - 2.24.2010
Kaspersky, a web security provider, reported Wednesday that while there is very little growth in the amount of malware currently roaming the web, it is becoming more advanced and much harder to detect.
|
