We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Cybercriminals Exploit PDF Filter to Embed Malware

Security software company Avast! catches cybercriminals using Adobe's own specifications to slip past antivirus scanners.

Avast! Virus Lab has discovered a dirty trick that cybercriminals are using to encode malware exploits and payloads into PDF files. Adobe says that the this trick has been used in a relatively small number of attacks, as well as one targeted attack.

The vulnerability was found in the JBIGeDecode filter, a feature specifically intended for compressing monochrome images, and allowed attackers to use the JBIG2Decode specifications hide their encoded malicious payload in order to get past antivirus scanners without being detected. The dangerous encoded content is targets a flaw identified as CVE-2010-0188, which allowed attackers to cause Adobe Reader and Acrobat to crash--and possibly gain complete control of your system.

According to Jiri Sejtko, Avast's senior virus analyst, "the JBIG2 algorithm works here because any data--text or binary--can be declared as a monochrome two-dimensional image." Sejtko also says that they hadn't expected anyone would use a pure image algorithm for something that's not an image.

Avast patched the vulnerability in current versions of Adobe Reader, however, older versions of the program are still affected. As always, you should keep Adobe up to date and on automatic update if possible. For more information on this vulnerability visit the Avast! Blog.

[Avast]

IDG UK Sites

Windows 9 launch event live: Windows 9 launch live blog - find out first as the new Windows is...

IDG UK Sites

Windows 9 and the death of the OS as a must-have product

IDG UK Sites

Video trends: 4K is here – HDR video, VR and 3D audio is coming

IDG UK Sites

Best iPhone 6, iPhone 6 Plus deals: iPhone 6, iPhone 6 Plus tariffs, contracts and prices UK