Attackers Use Steganography to Obfuscate PDF Exploits

EdgeSpot researchers discovered a powerful exploit obfuscation technique used to make malicious PDF documents appear legitimate and, therefore, bypass the detection of almost all anti-virus engines. This technique enabled all streams to look normal and all images to be viewable. Researchers believe this is the first time the steganography technique has been used to hide malicious JavaScript code in images embedded in PDF documents. The NJCCIC recommends users avoid clicking on any unsolicited or suspicious links or files. EdgeSpot provides additional information about their findings here.

AlertNJCCICpdf, steganography