New ‘Shadow Attack’ can replace content in digitally signed PDF files

New ‘Shadow Attack’ can replace content in digitally signed PDF files

Fifteen out of 28 desktop PDF viewer applications are vulnerable to a new attack that lets malicious threat actors modify the content of digitally signed PDF documents.

The list of vulnerable applications includes Adobe Acrobat Pro, Adobe Acrobat Reader, Perfect PDF, Foxit Reader, PDFelement, and others, according to new research [PDF] published this week by academics from the Ruhr-University Bochum in Germany.

URL: https://www.zdnet.com/article/new-shadow-attack-can-replace-content-in-digitally-signed-pdf-files/?ftag=TRE-03-10aaa6b&bhid=21735961543072688253262375158449&mid=12942689&cid=717936240

Leave a Reply

Your email address will not be published. Required fields are marked *

3 × two =