GFI TalkTechToMe - A Vlog to help you get the most out of our software.

Follow GFI:

Find us on Facebook

Follow us on Twitter

Find us on Linkedin

Subscribe to our RSS Feed

Find us on YouTube

Find us on Google+

Dangerous new spam run infects users through PDF exploit

Alex Eckelberry on June 30, 2009

Yesterday, our honeypots started detecting a dangerous new spam run, pushing a fake update for Outlook and Outlook Express.

Purporting to come from Microsoft, the spam pushes people to a web page which then redirects to a page serving a PDF exploit.

Clicking the link takes one to a “Microsoft” update page. One of several examples is shown here:

After a brief period of time, the user is redirected to an exploit page. The payload is Zbot.

This is an extremely dangerous spam run if you or your users are not fully updated on the latest versions of Adobe Acrobat. Get updated.

Alex Eckelberry

submit to reddit

Subscribe to our RSS feeds

Subscribe to our email feed