Shulou(Shulou.com)11/24 Report--

CTOnews.com August 31 news, Japanese computer emergency response team JPCERT recently issued a warning, found a malicious Word documents embedded in the PDF format of a new type of attack, can bypass pdfid and other traditional PDF analysis tools.

Officially, the technology is named "MalDoc in PDF". The attacker creates a special PDF format file. Once opened through the Microsoft Word application, the user will activate the macro command in the file and execute malicious code.

In the sample observed by the agency, although the malicious file is in PDF format, the real suffix is .doc. If the user device configures that the default doc file processing application is Word, double-clicking the PDF will automatically invoke Word to open it.

Yuma Masubuchi, a security expert at the agency, said that attackers would create mht files in Word and attach a macro to the PDF file object, which is difficult to detect by traditional PDF analysis tools such as pdfid.

CTOnews.com is here to attach the original address, interested users can click to read.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.