Chinese intruders gang used to transfer malware in a simple manner – using DropBox and WordPress functionality.The gang is called ‘DNSCalc’, known mainly due to its past intrusions to The New York Times servers and collection of information for months until discovered.This time it turns out that the gang was able to install malware on […]
There’s something that I wanted to test out for quite some time, but kept postponing until recently. Adobe Reader will ask confirmation before it retrieves a URL when a PDF document contains an action to do so. But what about the Certificate Revocation List in a signed PDF document?When you open a signed PDF document […]
As promised in our previous blog entry for the recent Adobe Reader PDF zero-day attack, we now offer more technical details on this Reader “sandbox-escape” plan. In order to help readers understand what’s going on there, we first need to provide some background.Adobe Reader’s Sandbox ArchitectureThe Adobe Reader sandbox consists of two processes: a high-privilege […]
Latest Comments