[HackerNews] Researchers Demonstrate 2 New Hacks to Modify Certified PDF Documents

Cybersecurity researchers have disclosed two new attack techniques on certified PDF documents that could potentially enable an attacker to alter a document’s visible content by displaying malicious content over the certiļ¬ed content without invalidating its signature.
“The attack idea exploits the flexibility of PDF certification, which allows signing or adding annotations to certified documents

Source: Read More (The Hacker News)

You might be interested in …

[ThreatPost] Zero-Day Used to Wipe My Book Live Devices

All posts, ThreatPost

Threat actors may have been duking it out for control of the compromised devices, first using a 2018 RCE, then password-protecting a new vulnerability. Source: Read More (Threatpost)

Read More

[SecurityWeek] Pegasus Scandal Shows Risk of Israel’s Spy-tech Diplomacy: Experts

All posts, Security Week

Reports that Israel-made Pegasus spyware has been used to monitor activists, journalists and politicians around the world highlight the diplomatic risks of nurturing and exporting “oppressive technology”, experts warned Monday. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[SecurityWeek] Hackers Claim to Have Data of 70 Million AT&T Customers

All posts, Security Week

A hacking group claims to be in the possession of a database containing private information on roughly 70 million AT&T customers, but the telecoms company says its systems have not been breached. read more Source: Read More (SecurityWeek RSS Feed)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.