Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- New report from Sophos
February 27, 2010, 11:04 am
rate this thread
Re: New report from Sophos<---DANGER
Virus spreading via PDF
Virus writers have created an exploit for an unpatched vulnerability in
Adobe Flashplayer, Acrobat and Acrobat reader. The vulnerability exists in
these applications on all platforms, Windows, OS X, Linux and Solaris.
The vulnerable products are:
a.. Adobe Reader 9.1.2 and earlier 9.x versions
b.. Adobe Flash Player 126.96.36.199 and 10.0.22.87 and earlier 9.x and 10.x
You can read the alert from Adobe at:
The exploit runs with the privileges of the current user. The known virus is
delivered as a PDF file which could be attached to an email or posted on a
OIT has seen an instance of an infected computer sending email with .PDF
attachments. The emails had a message saying the attachment was an e-card or
an invoice for a recent purchase. Usual warnings apply, if you weren't
expecting an email with an attachment, don't open the PDF attachment. If you
don't know the sender, don't open the PDF attachment.
The malicious PDF contains flash content. In the Windows environment, if the
malicious PDF is opened with an Adobe product, it will exploit the
vulnerability via the flash player .dll called authplay.dll. On a Windows
system, it is apparently possible to disable the connection between Acrobat
and Flash by renaming that .dll and one in the same directory called
rt3d.dll. This is the only workaround at this time. There are alternate PDF
viewers that would not be vulnerable.
According to malware analysts, the exploit will work on Windows 9x, NT, 2K,
XP, Vista, Server 2000 and Server 2003.
Adobe is working on a patch and says it will be ready for all platforms, but
Solaris, on 7/30/09. So until then, use caution when opening that PDF. If
you receive a PDF that crashes Acrobat, I'd like to know.
Re: New report from Sophos<---DANGER
| Virus spreading via PDF
| Virus writers have created an exploit for an unpatched vulnerability in
| Adobe Flashplayer, Acrobat and Acrobat reader. The vulnerability exists in
| these applications on all platforms, Windows, OS X, Linux and Solaris.
| The vulnerable products are:
| a.. Adobe Reader 9.1.2 and earlier 9.x versions
< snip >
| Adobe is working on a patch and says it will be ready for all platforms, but
| Solaris, on 7/30/09. So until then, use caution when opening that PDF. If
| you receive a PDF that crashes Acrobat, I'd like to know.
< snip >
Adobe Acrobat/Reader is now at v9.3.1 with multiple other vulnerabilities
this Mid 2009 message.
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp
- Beauregard T. Shagnasty
February 28, 2010, 2:48 pm
Re: New report from Sophos - No danger! Genuine report!
There is more evidence than ever before that a third motivation is
driving cybercrime: using malware and the internet to gain commercial,
political, economic and military advantage.
Security Threat Report: 2010
Social networking is the current major trend in computer use. It is
already heavily under attack and seems likely to continue to become more
of a target as its popularity grows. Whether users eventually will be
turned off by the rising tide of malware and spam may depend on how
providers react and implement measures to ensure security and privacy.
Governments will also play a major role in how secure the networks of
the future are, with much greater efforts required to crack down on
current cybercriminals and discourage new blood from joining the dark
side. These efforts must be implemented at both a local and global level
to ensure that crimes and criminals cannot be harbored and abetted by
rogue nation states ignoring global regulation. New laws must provide
protection from criminals but also ensure secure behavior by those
entrusted with sensitive data—who will doubtless continue to leak
information in ever-greater amounts, as we have observed throughout the
The other major power in providing a more secure future comprises the
creators and developers of the software and operating systems we use. As
technology grows more complicated, the likelihood of mistakes grows with
it—and such mistakes in software can often lead to vulnerabilities that
can be exploited by malicious attacks. With Google’s Chrome operating
system on the horizon, and the user base of Apple Mac and Linux
distributions such as Ubuntu growing steadily, the global monoculture of
Microsoft’s Windows finally may be starting to break down. This will
almost certainly be a boon for the security conscious, even if merely
because of the added diversity of the internet’s inhabitants.
However, the rise of cloud-based services inevitably will make users’
choice of operating system less relevant to hackers. With more sensitive
data being stored on the internet, and the rise of attacks that spread
entirely via the internet without having to touch the user’s desktop
computer, there is the potential for more serious security breaches and
for more information to be stolen more rapidly than ever before.
Finally, the accusation by Google that Chinese hackers had broken into
its systems and those of other companies, in the hunt for information,
may signal that the third age of malware has well and truly arrived.
Hacking and virus-writing began as a hobbyist activity, often designed
more to prove how clever the programmer was than to cause serious
long-term harm. It evolved into organized criminal activity, with the
lure of huge amounts of money driving gangs to steal identities and
advertise shady goods to the masses for significant financial rewards.
As we enter 2010, it can be argued that there is more evidence than ever
before that a third motivation is driving cybercrime: using malware and
the internet to gain commercial, political, economic and military
advantage over rivals.
- » Does anyone else have any warning about the validity of this site?
- — Next thread in » Computer Software Security