Posts Tagged: {05053de3-294c-12ce-1cdf-1bf4ce6cd741}

Zero-Day Malware Drops Payloads Signed with a Forged Microsoft Certificate


Security Websites are buzzing with news that a new zero-day exploit against Adobe Reader and Acrobat is circulating today, causing computers to become infected with malware simply by visiting certain Web pages. While the exploit itself is worthy of note, nobody is talking about the payload it downloads: It installs a trio of files dressed up to look like Windows system files which have been digitally signed with a security certificate supposedly issued by Microsoft. The digital signature gives the casual user the impression that the two signed files — an executable and a DLL both named “LNETCPL” — are […]

Continue Reading »