PDF files are the latest for luring users to open attachments in email.  Watch for the following subjects and don't open any pdfs from users you do not know.  Dangerous PDF files have now joined the ranks of potentially dangerous attachments.  BD 

Malicious PDF file (report.pdf or debt.2007.pdf or overdraft.2007.10.26.pdf or so) has been massively spammed through email during last hour and the spam run is still continuing. The PDF is spiced with CVE-2007-5020 exploit that downloads ms32.exe that downloads more components. At this point it's not clear yet what is the final payload of the malware, because of missing files in the download chain. We are investigating further.

The subjects for the spam messages include:
  Your credit report
  Your credit points
  Your balance report
  Personal Financial Statement
  Personal Credit Points
  Personal Balance Report
  Your Credit File
  Balance Report

Malicious PDF files being spammed out in volume - F-Secure Weblog : News from the Lab


Post a Comment

Google Analytics Alternative