[LINK] The ZIP email and the PDF email
Matthew Sullivan
matthew at sorbs.net
Mon Jul 2 13:21:58 AEST 2007
Rick Welykochy wrote:
>
> Now I am seeing a similar number of emails with a PDF attachment.
> Google turns up some mild PDF threats dated 2001.
>
> Does anyone know if either of these emails are attacks, and if so
> what the attack vector actually is?
No attack vector though there is some speculation about embedded javascript.
Currently it appears to be just another method of sending spam, most
companies will not filter PDF files or weight them as spam (and probably
rightly so). The randomisation in the name is the usual "let's make
them all different" tactic.
Regards,
Mat
More information about the Link
mailing list