We would love to stay in touch with you!

Enter your details to join our mailing list and we'll send you a link to exclusive content.

* indicates required
Close

Kim Jong-Il death exploited

by Jago Maniscalchi  //  January 2, 2012  //  News  //  1 Comment

The former North Korean dictator Kim Jong-Il, who suffered a fatal heart attack on board a train on December 17th last year, has become the latest subject of e-mail spammers.

Trend Micro researchers have collected a number of spam e-mails sent in the days after Mr Kim’s death that contain malicious PDF file attachments. The e-mails announce the death of Kim Jong-Il and carry a PDF file named ‘A Brief Introduction of Kim Jong-Il’.

Analysis of the PDF attackment by Erika Mendoza at Trend Micro revealed that it exploits CVE-2010-2883 and CVE-2011-0611 in Adobe Reader and Acrobat. It drops a backdoor that provides the ability to upload and download files, execute files and terminate processes.

About the Author

Jago Maniscalchi is a Cyber security consultant, though he tries to avoid the word "Cyber" at all costs. He has spent 15 years working with Information Systems and has experience in website hosting, software engineering, infrastructure management, data analysis and security assessment. Jago lives in London with his family, enough pets to start a small zooalogical society, and a Samsung NaviBot Robotic Vacuum Cleaner. Despite an aptitude for learning computer languages, his repeated attempts to learn Italian have resulted in spectacular failure.

One Comment on "Kim Jong-Il death exploited"

Trackbacks for this post

  1. Edgis Security - Human Exploited using Kim Jong Il’s Death

Leave a Comment

comm comm comm