PDF files most trusted...and most targeted

A new report from MessageLabs shows that PDF files are a common and growing attack vector for malicious exploits.

PDF files are one of the most common, and most trusted document formats out there. However, that trust, combined with the cross-platform use of PDFs makes the Adobe file format one of the most targeted and exploited by malicious attacks as well.

Symantec's MessageLabs has released the February 2011 Intelligence Report. The report details a variety of threats, including the ZeuS and SpyEye botnets, the rise in spam and phishing attacks, and an increase in malicious websites. But, one of the things that stands out is how PDF files are such a common, and growing target for malicious attacks.

Adobe has become a popular target for malware and malicious exploits. Adobe Reader, Adobe Flash, and other relatively ubiquitous Adobe products represent low-hanging fruit providing malicious developers with vulnerabilities to take advantage of.

In 2010, 65 percent of targeted attacks used PDF file exploits. The inherent--albeit unfounded--trust that users seem to place in PDF files makes the file format a prime vector for delivering malware and compromising PCs. If the trend continues, PDF-based attacks will account for more than three quarters of targeted attacks by the middle of 2011.

The MessageLabs report explains, "For years, PDFs have been used to stage targeted and now non-targeted attacks, but many people still consider PDFs a relatively trusted file type. In fact, the PDF is one of the most commonly used file formats with which to exchange electronic documents."

The report continues, "However, PDFs are potentially one of the most dangerous file formats available and should be treated with caution, much as EXE files should be. Because it is significantly easier to generate legitimate and concealed malicious content with PDFs, they are much more dangerous than EXEs."

Don't abandon the PDF file format, but also don't place undue trust or confidence in it. Malicious attackers will prey on that trust. Also, make sure you keep Adobe Reader up to date to take advantage of new security controls introduced by Adobe, and ensure that any known vulnerabilities are patched.

It is some sort of poetic irony, I suppose, that the February 2011 Intelligence Report is in PDF format itself. Seems like a bizarre paradox for the security report alerting me to the dangers of PDF files to be distributed as a PDF file.

More about: Adobe, MessageLabs, Symantec
References show all
Comments are now closed.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: spam, symantec, antispam, security, viruses, phishing, malware
ARN Directory | Distributors relevant to this article
Anyware Corporation , Aquion , Dicker Data , Express Data , Impact Systems Technology , Ingram Micro Australia , Leader Computers , Lynx Technologies , Topstar Computer International
ARN Directory | Vendors relevant to this article
Symantec
Get exclusive access to ARN's news, research and invitation only events.
ARN Distributor Directory
ARN Vendor Directory
Microsites

iAsset is a channel management ecosystem that automates all major aspects of the entire sales,marketing and service process, including data tracking, integrated learning, knowledge management and product lifecycle management.

 

Latest News

Apr 17
Splunk exec defects to tech disruptor Elasticsearch
Apr 17
JCurve acquisition to boost telco play following $A2.5m capital raising
Apr 17
Vodafone tackles FIFA World Cup with $5 roaming in Brazil
Apr 17
Kim Dotcom says he's set to get assets back
More News
24 Apr
The China Healthcare ICT Conference 2014
05 May
CeBIT Australia 2014
06 May
Oracle Day 2014 - Across 2 Cities
06 May
Oracle Day 2014 - Across 2 Cities
View all events