Technology PDF files posing a major security risk again

20:40  02 october  2019
20:40  02 october  2019 Source:   techradar.com

Chrome protects high-profile hacking targets against risky downloads

Chrome protects high-profile hacking targets against risky downloads Google's Advanced Protection Program now protects high-risk hacking targets even while they're casually surfing the web. 

A team of German academics have developed a new attack method capable of extracting and stealing data from encrypted PDF files.

a screenshot of a computer: How to edit a PDF for free© Provided by Future Publishing Ltd. How to edit a PDF for free

The new attack, called PDFex, comes in two variations and in testing, it was successfully able to steal data from PDFs in 27 desktop and web PDF readers including Adobe Acrobat, Foxit Reader, Nitro and from Chrome and Firefox's built-in PDF viewers.

PDFex doesn't actually target the encryption used on PDF documents by external software. Instead the attack targets the encryption schemes used by the Portable Document Format (PDF) which means all PDFs are vulnerable regardless of the software used to view them.

Trump’s Deal Allowing 3D-Printed Guns Online Deemed Illegal

  Trump’s Deal Allowing 3D-Printed Guns Online Deemed Illegal The Trump administration broke a federal law when it reached a settlement allowing a gun-technology company to post online the digital blueprints for making weapons with a 3D printer, a judge ruled. © Provided by The Associated Press States Sue Trump, Company Over 3D Guns The State Department didn’t give the public a proper explanation in 2018 when it reversed an Obama-era position to block publication by Defense Distributed of computer-aided design files for guns, U.S. District Judge Robert Lasnik in Seattle ruled on Tuesday.

  • A popular PDF app could have installed malware on your Android phone
  • How to edit a PDF for free
  • Businesses still aren't encrypting their removable devices

While the PDF standard supports native encryption, a team of six academics from Ruhr-University Bocum and Münster University in Germany found issues with the standard's encryption support and leveraged these to create PDFex.

PDFex variations

According to a blog post published by the researchers, encrypted PDF documents are vulnerable to two attacks types that are known by the method used to carry out the attack and exfiltrate data.

The first, known as “direct exfiltration” uses the fact that PDF software doesn't encrypt the entirety of a PDF file and actually leaves some parts unencrypted. By tampering with these unencrypted fields, an attacker can create a booby-trapped PDF file that will attempt to send the file's content back to an attacker when decrypted and opened.

Trump files to dismiss lawsuit from Bolton aide on impeachment testimony

  Trump files to dismiss lawsuit from Bolton aide on impeachment testimony President Trump on Thursday moved to dismiss a lawsuit filed by an aide to former national security adviser John Bolton seeking a ruling on whether he must comply with a congressional subpoena to testify in the House impeachment inquiry.The filing to the U.S. District Court in Washington, D.C., cited Trump's official capacity as president. In it, he sought to have a judge dismiss White House official Dr. Charles Kupperman lawsuit seeking guidance on whether he should comply with the subpoena or the president's directive not to comply.An attorney for Trump argued that the president's direction should overrule any prospective court ruling.

The second PDFex attack variation focuses on the parts of a PDF file that are encrypted. By using CBC gadgets, an attacker can modify the plaintext data stored in a PDF at its source. This means that an attacker can use a CBC gadget to modify the encrypted content to create booby-trapped PDF files that submit their own content to remote servers using PDF forms or URLs.

All of the different variations of PDFex require than an attack be able to modify user's encrypted PDF files. However, to do this they would have to intercept a victim's network traffic or have physical access to their devices or storage.

All in all, PDFex is a major vulnerability in the PDF standard and the research team behind the new attack will be presenting their findings at the ACM Conference on Computer and Communications Security next month.

  • Also check out the best free anti-malware software

Via ZDNet

Apple's latest iOS 13 update fixes Mail, background download glitches .
Less than two weeks after the last iOS 13 update, Apple is back with another minor tweak, this time raising the version number to iOS 13.2.3. iOS 13.2 was the most recent major update, when it added support for Deep Fusion photography and the AirPods Pro last month. This one gives iPads and iPhones fixes meant to address issues with the built-in Mail, Files and Notes apps, as well as a problem that could stop apps from downloading information in the background -- Apple didn't mention any fixes for security issues.iOS 13.2.3 includes bug fixes and improvements for your iPhone.

—   Share news in the SOC. Networks

Topical videos:

usr: 0
This is interesting!