silversurfer
Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
- Aug 17, 2014
- 10,207
German academics have developed a new attack that can extract and steal data from encrypted PDF files, sometimes without user interaction.
Named PDFex, the new attack comes in two variations and was successfully tested against 27 desktop and web PDF viewers, including popular software such as Adobe Acrobat, Foxit Reader, Evince, Nitro, and Chrome and Firefox's built-in PDF viewers.
New PDFex attack can exfiltrate data from encrypted PDF files
All the 27 desktop and web PDF viewer apps that were tested were found to be vulnerable in a way or another.
www.zdnet.com
PDFex: Major Security Flaws in PDF Encryption
After investigating the security of PDF signatures , we had a deeper look at PDF encryption. In cooperation with our friends from Mün...
web-in-security.blogspot.com