Credit to Author: Pieter Arntz| Date: Thu, 27 May 2021 16:55:30 +0000
 | |
| Certified PDFs are supposed to control modifications so that recipients know they haven’t been tampered with. It doesn’t always work. Categories: Exploits and vulnerabilities Tags: bochumcertified pdfdigital signatureseaaJavaScriptPDFSSA |
The post Falsifying and weaponizing certified PDFs appeared first on Malwarebytes Labs.
Read more
Credit to Author: Nikolay Pankov| Date: Fri, 28 Feb 2020 21:49:42 +0000
Researcher Fabian Ising, speaking at the Chaos Communication Congress, showed the limits of PDF encryption’s strength.
Read more
Credit to Author: Nikolay Pankov| Date: Tue, 14 Jan 2020 12:31:34 +0000
Researchers try to modify the contents of a signed PDF file without invalidating the signature.
Read more
Credit to Author: Gabor Szappanos| Date: Thu, 18 Jul 2019 16:00:18 +0000
Weaponized RTF documents adopt CVE-2018-0798, another Equation Editor vulnerability<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/ltjXsAajVFc” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Luca Nagy| Date: Tue, 05 Mar 2019 14:00:10 +0000
In this Sophos101 report, we’ll give you the lowdown on what you need to know about this, unfortunately, widely disseminated malware.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/QbQ2o1iJn68″ height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Andrew Brandt| Date: Tue, 05 Mar 2019 13:59:17 +0000
By SophosLabs Research Emotet is a botnet in its own right, one so prolific and dominant that the United States CERT, the body tasked with tracking cyberthreats to the country, named Emotet in July, 2018 “among the most costly and destructive malware” to affect governments, enterprises and organizations large and small, and individual computer users. […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/A9JdHdI4I94″ height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Andrew Brandt| Date: Tue, 05 Mar 2019 13:58:33 +0000
By SophosLabs Research The Emotet family could not do what it does without receiving a constant stream of instructions from its owners, or in the absence of the detailed level of feedback about its operating environment each bot sends home from an infected host machine. It also uses huge numbers of compromised websites that belong […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/tuvtIYBP4JI” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: hajnalkakope| Date: Tue, 05 Mar 2019 13:57:54 +0000
By SophosLabs Research Emotet’s arrival is usually preceded by a deceptive spam email, which has a malicious attachment. Opening the attachment starts a process which can lead to an Emotet infection. The Emotet application is an evolved binary, in the sense that it has gone through thousands of iterations over its existence. Its presence as […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/CfniXxu0bac” height=”1″ width=”1″ alt=””/>
Read more