PDF files most trusted...and most targeted

A new report from MessageLabs shows that PDF files are a common and growing attack vector for malicious exploits.

PDF files are one of the most common, and most trusted document formats out there. However, that trust, combined with the cross-platform use of PDFs makes the Adobe file format one of the most targeted and exploited by malicious attacks as well.

Symantec's MessageLabs has released the February 2011 Intelligence Report. The report details a variety of threats, including the ZeuS and SpyEye botnets, the rise in spam and phishing attacks, and an increase in malicious websites. But, one of the things that stands out is how PDF files are such a common, and growing target for malicious attacks.

Adobe has become a popular target for malware and malicious exploits. Adobe Reader, Adobe Flash, and other relatively ubiquitous Adobe products represent low-hanging fruit providing malicious developers with vulnerabilities to take advantage of.

In 2010, 65 percent of targeted attacks used PDF file exploits. The inherent--albeit unfounded--trust that users seem to place in PDF files makes the file format a prime vector for delivering malware and compromising PCs. If the trend continues, PDF-based attacks will account for more than three quarters of targeted attacks by the middle of 2011.

The MessageLabs report explains, "For years, PDFs have been used to stage targeted and now non-targeted attacks, but many people still consider PDFs a relatively trusted file type. In fact, the PDF is one of the most commonly used file formats with which to exchange electronic documents."

The report continues, "However, PDFs are potentially one of the most dangerous file formats available and should be treated with caution, much as EXE files should be. Because it is significantly easier to generate legitimate and concealed malicious content with PDFs, they are much more dangerous than EXEs."

Don't abandon the PDF file format, but also don't place undue trust or confidence in it. Malicious attackers will prey on that trust. Also, make sure you keep Adobe Reader up to date to take advantage of new security controls introduced by Adobe, and ensure that any known vulnerabilities are patched.

It is some sort of poetic irony, I suppose, that the February 2011 Intelligence Report is in PDF format itself. Seems like a bizarre paradox for the security report alerting me to the dangers of PDF files to be distributed as a PDF file.

FILL IN THE SURVEY - AND YOU COULD BE A WINNER: ARN wants to hear from YOU. Tell us how you run a successful business and you could win an adrenaline-fuelled adventure of your choice. COMPLETE THE ARN SURVEY.

Tags spamsymantecantispamsecurityvirusesphishingmalware

More about Adobe Systems Pty LtdMessageLabsSymantec

ARN Directory | Distributors relevant to this article

ARN Directory | Vendors relevant to this article

Comments

Comments are now closed

 

Latest News

02:30PM
Investment in services pays off for ASG
01:50PM
Voice over 4G: Vodafone lands Australian first
12:47PM
Distribution Central launches Fusion Systems in SAN Systems rebrand
11:59AM
Elisha joins Pivotal as new CTO
More News
20 Aug
Westcon Group Imagine 2014 - Melbourne
21 Aug
CAST 611 Advanced Penetration Testing
25 Aug
CA IT Leaders Forum ’14 Brisbane
26 Aug
Integrate 2014 Exhibition & Conference
View all events