PDF files most trusted...and most targeted

A new report from MessageLabs shows that PDF files are a common and growing attack vector for malicious exploits.

PDF files are one of the most common, and most trusted document formats out there. However, that trust, combined with the cross-platform use of PDFs makes the Adobe file format one of the most targeted and exploited by malicious attacks as well.

Symantec's MessageLabs has released the February 2011 Intelligence Report. The report details a variety of threats, including the ZeuS and SpyEye botnets, the rise in spam and phishing attacks, and an increase in malicious websites. But, one of the things that stands out is how PDF files are such a common, and growing target for malicious attacks.

Adobe has become a popular target for malware and malicious exploits. Adobe Reader, Adobe Flash, and other relatively ubiquitous Adobe products represent low-hanging fruit providing malicious developers with vulnerabilities to take advantage of.

In 2010, 65 percent of targeted attacks used PDF file exploits. The inherent--albeit unfounded--trust that users seem to place in PDF files makes the file format a prime vector for delivering malware and compromising PCs. If the trend continues, PDF-based attacks will account for more than three quarters of targeted attacks by the middle of 2011.

The MessageLabs report explains, "For years, PDFs have been used to stage targeted and now non-targeted attacks, but many people still consider PDFs a relatively trusted file type. In fact, the PDF is one of the most commonly used file formats with which to exchange electronic documents."

The report continues, "However, PDFs are potentially one of the most dangerous file formats available and should be treated with caution, much as EXE files should be. Because it is significantly easier to generate legitimate and concealed malicious content with PDFs, they are much more dangerous than EXEs."

Don't abandon the PDF file format, but also don't place undue trust or confidence in it. Malicious attackers will prey on that trust. Also, make sure you keep Adobe Reader up to date to take advantage of new security controls introduced by Adobe, and ensure that any known vulnerabilities are patched.

It is some sort of poetic irony, I suppose, that the February 2011 Intelligence Report is in PDF format itself. Seems like a bizarre paradox for the security report alerting me to the dangers of PDF files to be distributed as a PDF file.

CHANNEL CHOICE: Vote Now for your favourite in the three categories: Vendor, Distributor and Reseller. Voting closes August 8.

Tags spamsymantecantispamsecurityvirusesphishingmalware

More about AdobeMessageLabsSymantec

ARN Directory | Distributors relevant to this article

ARN Directory | Vendors relevant to this article

Comments

Comments are now closed

 

Latest News

02:17PM
Newcastle Council deploys TechnologyOne enterprise solution
11:44AM
Vodafone re-allocates 850MHz 4G spectrum a week after Telstra and Optus 700MHz l...
11:40AM
Sitecore tackles Western Australia with Velrada partnership
10:32AM
Email to make way for automation: KPMG
More News
29 Jul
SplunkLive!; Canberra
05 Aug
Systems Technology Day - Build Your Own Private Cloud
06 Aug
Oracle Employee Experience Journey Mapping Workshops
20 Aug
Westcon Group Imagine 2014 - Melbourne
View all events