A design flaw in Adobe’s popular PDF format will be exploited by hackers to install malware on users’ computers, a security company says. The bug, which is not strictly a security vulnerability but actually part of the PDF specification, was first disclosed by researcher Didier Stevens last week. Stevens’ technique relies on social engineering tactics to dupe users into opening a malicious PDF file. Adobe has acknowledged the bug, but has not yet committed to producing a patch to stymie attacks. The company has urged users to change Reader’s and Acrobat’s settings to disable the /Launch function.”]
Source: https://www.computerworld.com/article/2517044/researcher-warns-of-impending-pdf-attack-wave.html