all InfoSec news
Novel (?) PDF attack (and a new PDF visualization/threat assessment tool): injecting JavaScript into the encrypted section of Adobe Type 1 font binaries is not detectable by malware scanners (nor does it interfere with the decryption of the font)
Web: https://www.reddit.com/r/cybersecurity/comments/xejdve/novel_pdf_attack_and_a_new_pdf/
Sept. 15, 2022, 1:29 a.m. | /u/thenextsymbol
cybersecurity reddit.com
Apologies if this isn't new but the fact that none of the malware detection tools alert on it coupled with the fact that I could find nothing about this sort of thing on the internet suggested to me that it was a new kind of thing. No idea if this exploits a still extant vulnerability or an old one, but if you can help sort out what the malicious code is …
adobe assessment attack cybersecurity decryption encrypted javascript malware pdf scanners threat threat assessment tool visualization
More from reddit.com / cybersecurity
Latest InfoSec / Cybersecurity Jobs
Chief Information Security Officer
@ Los Angeles Unified School District | Los Angeles
Cybersecurity Engineer
@ Apercen Partners LLC | Folsom, CA
IDM Sr. Security Developer
@ The Ohio State University | Columbus, OH, United States
IT Security Engineer
@ Stylitics | New York City
Information Security Engineer
@ VDA Labs | Remote
Sr. Malware Researcher - Windows Software Engineer
@ SentinelOne | Brno, South Moravian, Czech Republic
Senior Cyber Security Incident Response Analyst
@ ServiceNow | Dublin, Ireland
Staff, Privacy Compliance Monitoring
@ Coupang | Seoul, South Korea
VULNERABILITY MANAGER
@ Security Bank | Makati, Makati, Philippines
Cyber Security Analyst
@ Avery Dennison | Bengaluru/Remote, India
Security Incident Response Manager (Remote, Americas)
@ Shopify | Dallas, TX, United States
Sr. Compliance Specialist (Screening)
@ Coupang | Seoul, South Korea