1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

It should be mandatory to scan PDF files too

Discussion in 'BlackHat Lounge' started by minute80, Sep 9, 2010.

  1. minute80

    minute80 Regular Member

    Joined:
    Dec 3, 2008
    Messages:
    310
    Likes Received:
    81
    People usually put PDF downloads without virus scan, but that shouldn't be a case any more.
    As you can see in this article, this exploit is being ACTIVELY used and can plant malware on your computer.

    Code:
    http://www.theinquirer.net/inquirer/news/1732154/adobe-issues-bug-warning
    
     
    • Thanks Thanks x 1
  2. biffo

    biffo Regular Member

    Joined:
    Nov 24, 2008
    Messages:
    249
    Likes Received:
    54
    Occupation:
    This & That
    Location:
    Nottingham
    Yup. I was reading about this too. Those "crimekits" can exploit them, ex potentially.
     
  3. The Scarlet Pimp

    The Scarlet Pimp Jr. VIP Jr. VIP Premium Member

    Joined:
    Apr 2, 2008
    Messages:
    788
    Likes Received:
    3,123
    Occupation:
    Chair moistener.
    Location:
    Cyberspace
    • Thanks Thanks x 1
  4. gregstereo

    gregstereo Elite Member

    Joined:
    Oct 5, 2009
    Messages:
    1,833
    Likes Received:
    1,027
    Occupation:
    I'm known to locate certain things from time to ti
    Location:
    Moose Factory, ON
    It should also be mandatory for bhw to babysit my children and make my morning coffee for me.

    I'm not trying to flame you, just taking your comment to the absurd. Exploits with PDF's, image files, and a number of other file extensions that used to be considered of no risk as disease vectors have been around for quite some time. Hell, a few weeks ago someone figured out how to make windoze shortcut files (.lnk) malicious.

    I independently scan *everything* I download - not just what I download from bhw, but anything I get from the web. WizGizmo put up an excellent sticky after the recent spinnerchief clusterf, and we all know that VT scan reports can be spoofed...we each need to take some responsibility for what we download (that was partially the gist of Wiz' sticky).

    There are other methods for securing your computer that have been discussed - different mixes of hardening software and hardware, *nix, virtual machines, and so forth. All depends on how deep down the rabbit hole you want to go.

    Again, not a sermon or a flame, just a thought.

    peace - gregs.
     
  5. mrlvh

    mrlvh Newbie

    Joined:
    May 19, 2009
    Messages:
    2
    Likes Received:
    4
    Been getting quite a lot of warning from my AV on some of the recent PDFs.
    Funnily enough, mostly from 'methods' pdf, where the poster tells me i 'have to' download the pdf as it contains the vital info.

    Justs re-affirm my suspicions, just decline the download and move on.:cool:
     
  6. mrlvh

    mrlvh Newbie

    Joined:
    May 19, 2009
    Messages:
    2
    Likes Received:
    4
    Been getting quite a lot of warning from my AV on some of the recent PDFs.
    Funnily enough, mostly from 'methods' pdf, where the poster tells me i 'have to' download the pdf as it contains the vital info.

    Justs re-affirm my suspicions, just decline the download and move on.:cool:
     
  7. minute80

    minute80 Regular Member

    Joined:
    Dec 3, 2008
    Messages:
    310
    Likes Received:
    81
    Well I would just want to enforce the mandatory pdf scanning, since these attacks are gaining popularity and people here are quite clueless about certain stuff. If there is a need to scan exe files, than there should be one for pdfs as well.

     
  8. robertodelgato

    robertodelgato Regular Member

    Joined:
    Jun 28, 2009
    Messages:
    348
    Likes Received:
    3,177
    Occupation:
    Yeah, right.
    Location:
    Top of the 3-pack
    Help may be on the way...

    Code:
    http://www.theinquirer.net/inquirer/news/1736606/adobe-readies-raft-patches
    That outta last for 15 minutes... :rolleyes:

    IMHO:

    The only way be relatively safe is NOT USE YOUR PRIMARY MACHINE FOR F**KING AROUND!!

    I mean really...do you need a quad-core with 16 Gigs of ram to browse the net with FF? Use an old 'puter that's too underpowered to run Photoshop or install Vista/7 any longer.

    Use one that you don't care about to d/l, view, unzip stuff. Run every AV/Malware security you can get your hands on on that one anyway (keeps you from having to re-image it so often).

    I keep it on its own network IP range also (probably more superstition than actual protection).

    The old saying 'Don't crap where you eat' works for computers also.
    :D