Kim Jong-Il death exploited

by Jago Maniscalchi // January 2, 2012 // News // 1 Comment

The former North Korean dictator Kim Jong-Il, who suffered a fatal heart attack on board a train on December 17th last year, has become the latest subject of e-mail spammers.

Trend Micro researchers have collected a number of spam e-mails sent in the days after Mr Kim’s death that contain malicious PDF file attachments. The e-mails announce the death of Kim Jong-Il and carry a PDF file named ‘A Brief Introduction of Kim Jong-Il’.

Analysis of the PDF attackment by Erika Mendoza at Trend Micro revealed that it exploits CVE-2010-2883 and CVE-2011-0611 in Adobe Reader and Acrobat. It drops a backdoor that provides the ability to upload and download files, execute files and terminate processes.

About the Author

Jago Maniscalchi is a Cyber security consultant, though he tries to avoid the word "Cyber" at all costs. He has spent 15 years working with Information Systems and has experience in website hosting, software engineering, infrastructure management, data analysis and security assessment. Jago lives in London with his family, enough pets to start a small zooalogical society, and a Samsung NaviBot Robotic Vacuum Cleaner. Despite an aptitude for learning computer languages, his repeated attempts to learn Italian have resulted in spectacular failure.

One Comment on "Kim Jong-Il death exploited"

Trackbacks for this post

Edgis Security - Human Exploited using Kim Jong Il’s Death

Warning: file_get_contents(http://feedburner.google.com/api/awareness/1.0/GetFeedData?uri=digitalthreat) [function.file-get-contents]: failed to open stream: HTTP request failed! HTTP/1.0 404 Not Found in /home/natmac2/public_html/digitalthreat/wp-content/themes/duplex/functions/widget-rsstwitter.php on line 65