[LINK] The ZIP email and the PDF email

Matthew Sullivan matthew at sorbs.net
Mon Jul 2 13:21:58 AEST 2007


Rick Welykochy wrote:
>
> Now I am seeing a similar number of emails with a PDF attachment.
> Google turns up some mild PDF threats dated 2001.
>
> Does anyone know if either of these emails are attacks, and if so
> what the attack vector actually is?
No attack vector though there is some speculation about embedded javascript.

Currently it appears to be just another method of sending spam, most 
companies will not filter PDF files or weight them as spam (and probably 
rightly so).  The randomisation in the name is the usual "let's make 
them all different" tactic.

Regards,

Mat






More information about the Link mailing list