Latest Threats

 

Exploit.PDF-Dropper.Gen

Urgency:

High

Description

Inter Engineering in cooperation with F-Secure has been notified of an active spam run that tries to exploit a PDF vulnerability.

The emails look like this:
 
 
   From: random addresses
   To: random recipients
   Subject: New Resume
   
   Please review my CV, Thank You!
   
   Attachment: resume.pdf
   
The PDF attachment exploit will try to inject to the target system trojan-downloader files.
 

F-Secure has published a detection signature that detects these PDF attachments as infected. It is included in the database version 2010-06-08_03.
 

More information on the infection can be found at:

http://www.f-secure.com/weblog/archives/00001963.html
 

Prevention steps
 

It is strongly recommended by Inter Engineering to perform the following actions in order to avoid get infected:
 

- Make sure that all your F-Secure Anti-virus installations are updated with the latest updates.

- If you are using Email Filtering solutions (like
F-Secure Messaging Security Gateway
 

F-Secure Antivirus for Microsoft Exchange
Clearswift Secure Email Gateway
Clearswift Mimesweeper for SMTP

You can enable detection of the particular subject, and set these messages to quarantine.
 

For more technical information contact Support Department via e-mail support@inter-datasecurity.com or via phone +30.2410.670030.

To contact us: 
Tel. +30.2410.670030
Fax.+30.2410.670006
Email:info@inter-datasecurity.com
www.inter-datasecurity.com