this post was submitted on 17 Apr 2024
1 points (100.0% liked)

Pulse of Truth

438 readers
0 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago
MODERATORS
krogoth@infosec.pub
1
Malicious PDF File Used As Delivery Mechanism, (Wed, Apr 17th) (isc.sans.edu)
submitted 6 months ago by lemmydev2@infosec.pub to c/pulse_of_truth@infosec.pub
0 comments fedilink hide all child comments
 

Billions of PDF files are exchanged daily and many people trust them because they think the file is "read-only" and contains just "a bunch of data". In the past, badly crafted PDF files could trigger nasty vulnerabilities in PDF viewers. All of them were affected at least once, especially Acrobat or FoxIt readers. A PDF file can also be pretty "dynamic" and embed JavaScript scripts, auto-open action to trigger the execution of a script (for example PowerShell on Windows, etc), or any other type of embedded data.

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here