all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

A Large-Scale Study of Phishing PDF Documents. (arXiv:2308.01273v1 [cs.CR])

Add to bookmarks
Aug. 3, 2023, 1:10 a.m. | Giada Stivala, Sahar Abdelnabi, Andrea Mengascini, Mariano Graziano, Mario Fritz, Giancarlo Pellegrino

cs.CR updates on arXiv.org arxiv.org

Phishing PDFs are malicious PDF documents that do not embed malware but trick
victims into visiting malicious web pages leading to password theft or drive-by
downloads. While recent reports indicate a surge of phishing PDFs, prior works
have largely neglected this new threat, positioning phishing PDFs as
accessories distributed via email phishing campaigns.


This paper challenges this belief and presents the first systematic and
comprehensive study centered on phishing PDFs. Starting from a real-world
dataset, we first identify 44 phishing …

distributed documents downloads drive drive-by drive-by downloads email large malicious malware password pdf pdfs phishing reports scale study theft threat web

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Quantum $X$-Secure $B$-Byzantine $T$-Colluding Private Information Retrieval 18 hours ago | arxiv.org
arxiv capabilities context cs.cr +13
Approximation of Pufferfish Privacy for Gaussian Priors 18 hours ago | arxiv.org
adversary arxiv cs.cr cs.it +9
Polynomial XL: A Variant of the XL Algorithm Using Macaulay Matrices over Polynomial Rings 18 hours ago | arxiv.org
algorithm arxiv computer computer science +11
Families of sequences with good family complexity and cross-correlation measure 18 hours ago | arxiv.org
alphabet arxiv binary complexity +12
Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation 18 hours ago | arxiv.org
access arxiv attack breaking +26
Seeing Is Not Always Believing: Invisible Collision Attack and Defence on Pre-Trained Models 18 hours ago | arxiv.org
arxiv attack bert big +14
Proceedings of the 2nd International Workshop on Adaptive Cyber Defense 18 hours ago | arxiv.org
applications artificial artificial intelligence arxiv +16
Sharpness-Aware Data Poisoning Attack 18 hours ago | arxiv.org
aim arxiv attack attacks +18
Fant\^omas: Understanding Face Anonymization Reversibility 18 hours ago | arxiv.org
anonymization arxiv can claims +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Engineer

@ Celonis | Munich, Germany
View on infosec-jobs.com

Security Engineer, Cloud Threat Intelligence

@ Google | Reston, VA, USA; Kirkland, WA, USA
View on infosec-jobs.com

IT Security Analyst*

@ EDAG Group | Fulda, Hessen, DE, 36037
View on infosec-jobs.com

Scrum Master/ Agile Project Manager for Information Security (Temporary)

@ Guidehouse | Lagunilla de Heredia
View on infosec-jobs.com

Waste Incident Responder (Tanker Driver)

@ Severn Trent | Derby , England, GB
View on infosec-jobs.com

Risk Vulnerability Analyst w/Clearance - Colorado

@ Rothe | Colorado Springs, CO, United States
View on infosec-jobs.com
View more jobs