Broadband Tech > Security > Security > Trojan smuggles out nicked blueprints as Windows Update data

Trojan smuggles out nicked blueprints as Windows Update data

quote:

---

Security watchers have uncovered a new highly targeted email-borne attack that uses a supposed conference invitation as a lure - and disguises extracted data as Microsoft Update traffic.

"The method of operation of many of the attacks is similar – a spearphishing email is sent with a PDF attachment of a fake industry related 'Conference Invitation'. The PDF file exploits zero-day vulnerabilities in Adobe Reader, and then installs the RAT [Remote Access Trojan] malware. The malware tries to stay under the radar of security products by pretending to be a 'Microsoft Windows Update' - hence the name 'MSUpdater' Trojan."

---

Hmm wasn't there another version of this thing some years ago? I don't recall if it was driven by a PDF attachment or something ellse.
--
da Cajun Darn I hate Malware

reply to Stem Bolt
After all these years people are still falling for email attachments?

reply to Stem Bolt
After all these years people are still using Adobe products? Seriously, it's horrendously bloated and "helpfully" opens every single PDF it sees, even if you don't want it to. If I wanted to view that PDF I'd download it and then open it thank you very much.

E-mail client with preview pane + PDF attachment + Adobe = instant pwnage, you can't even delete it without opening it first.

/M

I don't use preview panes, but I have no problems deleting emails with attachments????
--
da Cajun Darn I hate Malware

reply to dvd536