These attacks take advantage of Adobe Acrobat Reader and the ability to mess up the content and other applications. This attack does not mean that Adobe software is weak, but the ability of social engineering to trick users into clicking on something that could cause malicious code execution.
Credit card security research firm says Didier Stevens warning also came from the U.S. Department of Homeland Security U.S. Computer Emergency Readiness Team (US-CERT), which noted the danger that after the PDF Reader and Adobe Acrobat.
'When users open a PDF that contains a warning dialog box that users and application file viewer that is set to be launched by a PDF file. "
"An attacker can manipulate the contents of the file name of the dialog box in an attempt to convince users to open a file that is actually dangerous," he added.
Steve Gottwals Adobe said in a posting on the blog so that users Adobe Reader and Acrobat Reader to open files that can really be trusted, and not arbitrarily open the document from an unknown person.
US-CERT notes that Adobe Acrobat and Reader did a little mistake by providing the option to disable the warning message, which allows users to easily pass through security mechanisms.
News about the attacks through Adobe layana is old, last quarter TrendLabs security firm TrendMicro reported this week that have been identified in the updated Adobe spoofing attacks.
0 comments:
Posting Komentar