This one is nasty!
the PDF document contains everything it needs to fully exploit the victim’s machine – it does not have to download anything off the net.
Boldfaced and red emphasis added by me.
Here is how to do that.
Launch Adobe Reader.
Go to Edit->Preferences:
Click OK and then Exit Adobe Reader.
Don’t feel smug if you have a Macintosh or run Linux. Java is cross-platform. In addition, you could pass along an infected PDF without knowing it. Right now anyone can — only 6 out of 40 anti-virus programs found this exploit!
This is a new front in the malware wars. It will get ugly before it gets better.
And I want all of you who are thinking of snagging a pirated PDF off file-sharing services to consider this: All of them will likely be infected. I’ve seen it happen with other downloads — including audio and video files.
If they’ve cracked the PDF DRM, it’s highly likely they’ve gotten into the PDF itself and injected malware code.
Pay for your PDFs from reputable sources. “Free” will cost you in ways you can’t imagine.