Home » Adobe Reader, General News

Malicious PDF drops malware on foreign correspondents…

28 Sep 2009 | | No Comment

Nart Villeneuve, a research fellow at the Citizen Lab, Munk Centre for International Studies, University of Toronto reports a malware attack on foreign correspondents in China.

An alleged email from “Pam” was received by a number of Chinese-based journalists. The email contained a PDF attachment which contained code — exploiting holes in Adobe Reader which dropped malware onto the host computer.

Pam Bourdon Attachment

Pam Bourdon Attachment

The email details a reporter’s proposed trip to China including a relevant list of genuine contacts. Only a very small number of anti-virus products were able to detect the code embedded in the PDF.

After execution, the malware then attempts DNS resolution of a mail.amberice.com, menberservice.3322.org, and zwy2007.pc-officer.com.

More information can be found here >>

1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)

Leave your response!

You must be logged in to post a comment.