Most of us are no strangers to phishing attempts, and over the years we’ve kept you informed about the latest tricks used by attackers in the epidemic of phishing and spear-phishing campaigns that plague, in particular, email users. This is an older but useful article by Phil Stokes.
Like other files that can come as attachments or links in an email, PDF files have received their fair share of attention from threat actors, too. In this post, we’ll take you on a tour of the technical aspects behind malicious PDF files: what they are, how they work, and how we can protect ourselves from them.
The content of the article:
- How Do PDF Files Execute Code?
- Cleaning Up the Code
- Stealing Credentials with an SMB Attack
- Another Day, Another Callback
- Protecting Against PDF Attacks