Hackers launch PDF spam campaign

By Fiona Raisbeck on Jun 29, 2007 9:55 AM
Filed under Messaging

Hackers have launched a widespread "pump-and-dump" stock spam campaign using PDF files, anti-virus researchers have warned.

In a change of tactics, the attackers have hidden the spam content within a PDF file instead of attaching an image file to plug the stock, according to a security advisory on the McAfee website.

The spammers are sending the PDF files with randomly generated subject lines, sender names and a blank message body.

The stock spam is believed to have been sent from Stration infected computers, as this attack is similar to the W32/Stration worm mass-mailing, which contained a number of PDF files, Nick Kelly, sustaining engineer at McAfee said.

"Spammers are struggling to find ways to fool spam filters and get their messages into people's inboxes," said Bradley Anstis, director of product management at Marshal.

“But, spammers believe many anti-spam solutions largely ignore PDF files, so they use them in an attempt to add credibility and legitimacy to their messages. We expect to see a lot more of PDF spam. This recent case is just the beginning."

hackers, launch, pdf, spam, campaign

Ads by Google

What are your thoughts on this article? Add your comment below.

To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.

NOTE: You must be a registered member of SC Magazine to post a comment.

Click here to login | Click here to register

comments powered by Disqus