PDF files have become criminals’ favorites.
The security company warns the popularity of PDF documents as a tool for cyber screams. Antti Mannermaa
In its announcement, security firm Check Point Research states that PDF files are increasingly used in cyber attacks. It recalls that PDF scams are a direct threat to business business.
According to Check Point, more than one in five harmful email attachments are in PDF format, and 70 % of cyber attacks start by email. Scams are often mimicked by well -known brands such as Docusign
The use of PDF files for scams is also particularly detrimental because PDF is today a very common and trusted file format.
A variety of criminal use
Criminals can also use PDF files by immersing QR codes. The code attracts the user to scan it on the phone, leading him to the phishing site.
The harmful content of the PDF file can be hidden with complex coding so that it does not appear in standard file brackets. According to Check Point, such files may not be noticeable for months.
In addition, fake support phone numbers can be added to genuine-looking and trusted pdf files, which the user is directly into the cheater’s speeches by calling.
Because attacks with PDF files are often based on user operation, they are particularly difficult to prevent.
– When attacks are targeted at people instead of technical vulnerabilities, prevention is needed. Each file must be checked in real time, and harmful PDFs must be stopped before they access the user’s email, Check Point Research Security Director MATANYY MOSES says in the bulletin.