Wifi Password Recovery - UTM - Vulnerability Scanning


VIP LOUNGE
CLOUD LOGIN
Sun Sun Sun

You are here: News > News > PDF files used for worm transportation on Windows

» IT Security NEWS
 
» 30 April 2010
PDF files used for worm transportation on Windows

 

It was discovered by different anti-virus firms that many of the web crooks are creating distorted types of PDF documents that they may use in infecting Windows operating systems that are already affected with any kinds of malicious software.
Just about few weeks ago, files that were incorporated with ZeuS bot spread through the web. Now, a special tactic is being utilized in a way that PDF are injected with a worm and are being distributed as spam mails.
Infected PDFs are creatively manufactured
The PDF documents are incorporated with specific scripts or .exe files that can only be activated through the utilization of Launch Actions/Launch File utility. The dialogue box of Adobe Reader will appear and it will ask for the permission of the user regarding the activation of an embedded file. But then, this can be altered according to choice in cases where users do not have any suspicions for any problematic events that may happen.
Approaches of hackers attract users
A kind of spam has been found circulating in the web by the X-Force working under IBM. This spam message is entitled “Settings for your mailbox are changed” and the content of the PDF file attached to the mail refers to how one can alter his or her e-mail account settings.
The users are not cautious when opening PDF files and carelessly open the document by clicking the open button of any caution being presented by the Adobe Reader. And, if the PDF file is accessed, the VBScript will be activated and it will insert a game.exe file within the system and set it off.
Worm appears to be dynamic within the system
The worm Win32.Auraax is found in the PDF file that is currently being distributed in different webmail accounts. This worm is actually created intricately that it is capable of installing a rootkit within the Windows system and it can try infecting drives such as the USB drives that are being connected to the machine.
Most anti-virus scanners can spot malicious software within a system but it is best to just choose the setting wherein opening of non-PDF file attachments incorporated with external applications is not allowed. This option may be found under the Adobe Reader menu of Edit/Preferences/Trust Manager.
The reader has the function of presenting cautions to users making the issue lesser than the serious level. This is an essential option of the Adobe Reader and using it properly is a user’s responsibility.
Accessing the following links may give you general information about SecPoint: About SecPoint, SecPoint Awards, and SecPoint News.

 


Reviews of SecPoint.com
 
 
 
 
 

Awards & Reviews
  

  

Subscribe to our Mailing List

Customer References


About
About
SecPoint
History
Mission Statement
Vision
Management
Investment
Bank
Sponsorship
Certificates
Environment
Environment
What is RoHS Weee?
Accounting
Values
Member of Organisations
Merchandise
SecPoint Certification
Design
Status Information
Hardware Vendors
Jobs
Environment
SecPoint on social media
Twitter Facebook Youtube
Products
Products
Protector
Cloud Protector
Penetrator
Portable Penetrator
Cloud Penetrator
Free IT Security Tools
Pricing
SecPoint Brochures
SecPoint Questions FAQ
SecPoint Datasheets
SecPoint SPID Library


Partners
Partners
Become a SecPoint Affiliate
Become a SecPoint Partner
SecPoint Franchising
SecPoint Partner Lounge
News
News
Press
Product Awards
SecPoint RSS Feeds


Contact
Contact
General Contact
IT Security Products Webshop
Latest SecPoint Software Images Change Log
SecPoint FAQ Frequently Asked Questions
SecPoint on Twitter
SecPoint Sales Training Videos
SecPoint Shipping Cost
SecPoint World Wide Shipping
Support
Solutions
Anti-Spam Appliance
UTM Appliance
Penetration Testing
Proxy Appliance
SAAS
Spam Filters
Vulnerability Assessment
Vulnerability Scanner
Vulnerability Scanning
Vulnerability Scanning Appliance
Web Content Filter
Web Filter Appliance
WiFi Hacking
How essential is vulnerability
management?
What is ...?

Encyclopedia | Free Scan Statement | Link Policy | Privacy Statement | Resources | Sitemap | User Policy
© Copyright 1999-2012: SecPoint®
SecPoint ApS Noerregade 7B - 1165 Copenhagen K - Denmark
US Toll free: +1-888-704-7297 - EU: +45-70-235-245