Hi malware fighters,
Researchers found a new hackertoolkit that uses nothing but Adobe securityleaks in order to infect systems. "PDF Xploit Pack" (
http://www.trustedsource.org/blog/153/Rise-Of-The-PDF-Exploits )adds all kind of exploits to PDF-files. When a certain exploit has succesfully infected the OS, the IP address is sent to the attackers, so they need to try again. This to reduce the time it takes to manage the bots.
Use of PDF-files is becoming more and more popular amongst malcreants, this because other toolkits also have PDF exploits now. A year ago only 3% of the exploits were PDF directed.
As we have the gaping generic browser hole that can be exploited, and is still awaiting patching by MS and Adobe, it makes sense to have NoScript installed inside Firefox and pre-scan your browser links thoroughly before you click them, and also consider using a reader that is not vulnerable to mentioned exploits,
polonus
