25 November 2017
visit www.avoka.com

Phishers target Adobe vulnerability

10 August 2009  |  5210 views  |  0 fish 3

Phishers are sending out cleverely-constructed e-mails purporting to be from a Taiwanese bank in a bid to trick victims into downloading malware that exploits an Adobe vulnerability.

The spam e-mails contain credit card promotion email messages that are embedded with an .swf virus link, says Internet security outfit Symantec.

Recipients are able to see the bank's image at the top of the message and promotion notes at the bottom. There is also a large blank space designed to trick victims into believing the promotion content has been lost in transit.

The message contains a link that recipients are instructed to click on if the page does not display properly. If clicked on, users are redirected to a site containing shellcode in the form of a file named sploit.swf, which exploits Adobe AVM2 Scope Stack Corruption vulnerability.

Adobe released a patch for the vulnerability - which affects Acrobat, Reader and Flash - last month.



Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

CBA takes NetBank offline as phishing activity spikes

CBA takes NetBank offline as phishing activity spikes

29 June 2009  |  9096 views  |  0 comments
Western Union malware attack launched

Western Union malware attack launched

29 May 2009  |  9320 views  |  2 comments
Facebook hit by phishers again

Facebook hit by phishers again

15 May 2009  |  5923 views  |  0 comments
Phishing attacks surge in 2008

Phishing attacks surge in 2008

20 February 2009  |  12419 views  |  2 comments
Phishers target Twitter

Phishers target Twitter

06 January 2009  |  8874 views  |  0 comments
Phishers look to cash in on bank chaos

Phishers look to cash in on bank chaos

21 October 2008  |  8238 views  |  0 comments
French president Sarkozy falls victim to phishing fraud

French president Sarkozy falls victim to phishing fraud

20 October 2008  |  14076 views  |  0 comments | 1 tweets
Guilty plea in $700,000 phishing case

Guilty plea in $700,000 phishing case

10 October 2008  |  9175 views  |  0 comments

Related company news

 

Related blogs

Create a blog about this story (membership required)
visit www.capgemini.comvisit www.response.ncr.comvisit https://www.niceactimize.com

Top topics

Most viewed Most shared
Sepa instant payments goes liveSepa instant payments goes live
10972 views comments | 46 tweets | 79 linkedin
ING brings data privacy to blockchain transactionsING brings data privacy to blockchain tran...
9533 views comments | 25 tweets | 37 linkedin
hands typing furiouslyHow Fintech Companies are disrupting the C...
8198 views 0 | 20 tweets | 9 linkedin
Axis Bank uses Ripple to open new payment corridors between the UAE and SingaporeAxis Bank uses Ripple to open new payment...
8140 views comments | 8 tweets | 22 linkedin
UK Open Banking expanded to cover all PSD2 productsUK Open Banking expanded to cover all PSD2...
7828 views comments | 21 tweets | 47 linkedin

Featured job

Find your next job