19 February 2018
visit www.ebaday.com

Phishers target Adobe vulnerability

10 August 2009  |  5251 views  |  0 fish 3

Phishers are sending out cleverely-constructed e-mails purporting to be from a Taiwanese bank in a bid to trick victims into downloading malware that exploits an Adobe vulnerability.

The spam e-mails contain credit card promotion email messages that are embedded with an .swf virus link, says Internet security outfit Symantec.

Recipients are able to see the bank's image at the top of the message and promotion notes at the bottom. There is also a large blank space designed to trick victims into believing the promotion content has been lost in transit.

The message contains a link that recipients are instructed to click on if the page does not display properly. If clicked on, users are redirected to a site containing shellcode in the form of a file named sploit.swf, which exploits Adobe AVM2 Scope Stack Corruption vulnerability.

Adobe released a patch for the vulnerability - which affects Acrobat, Reader and Flash - last month.



Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

CBA takes NetBank offline as phishing activity spikes

CBA takes NetBank offline as phishing activity spikes

29 June 2009  |  9147 views  |  0 comments
Western Union malware attack launched

Western Union malware attack launched

29 May 2009  |  9370 views  |  2 comments
Facebook hit by phishers again

Facebook hit by phishers again

15 May 2009  |  5954 views  |  0 comments
Phishing attacks surge in 2008

Phishing attacks surge in 2008

20 February 2009  |  12465 views  |  2 comments
Phishers target Twitter

Phishers target Twitter

06 January 2009  |  8904 views  |  0 comments
Phishers look to cash in on bank chaos

Phishers look to cash in on bank chaos

21 October 2008  |  8258 views  |  0 comments
French president Sarkozy falls victim to phishing fraud

French president Sarkozy falls victim to phishing fraud

20 October 2008  |  14143 views  |  0 comments | 1 tweets
Guilty plea in $700,000 phishing case

Guilty plea in $700,000 phishing case

10 October 2008  |  9208 views  |  0 comments

Related company news

 

Related blogs

Create a blog about this story (membership required)
Visit https://www.capgemini.comVisit www.vasco.comvisit www.swift.com/your-needs/instant-payments

Top topics

Most viewed Most shared
Saudi central bank provides sandbox for banks to try out Ripple techSaudi central bank provides sandbox for ba...
11297 views comments | 16 tweets | 12 linkedin
ABN Amro moves escrow accounts to the blockchainABN Amro moves escrow accounts to the bloc...
8853 views comments | 15 tweets | 13 linkedin
ECB launches staunch defence of cashECB launches staunch defence of cash
8744 views 10 comments | 22 tweets | 26 linkedin
Aussie real-time payments platform goes liveAussie real-time payments platform goes li...
8717 views comments | 15 tweets | 43 linkedin

Featured job

Competitive base + commission
London, UK

Find your next job