Security News

New Injection Technique Exposes Data in PDFs
2020-12-10 17:13

Security researchers on Thursday documented and described a new injection technique capable of extracting sensitive data from PDF files. The new code-injection technique essentially allows hackers to inject code to launch dangerous XSS attacks within the bounds of a PDF document.

Here's how to enable Google Chrome's new modern PDF reader
2020-11-23 12:09

Hidden behind a flag is a much-anticipated PDF reader that users can enable right now. The PDF reader or viewer within Google Chrome has always been relatively simple, especially compared to other browsers, like Microsoft Edge.

Foxit Patches Code Execution Vulnerabilities in PDF Software
2020-10-14 10:22

PDF software developer Foxit has released patches to address several high-risk vulnerabilities affecting both Windows and macOS applications. Last week, the company released security updates for both Foxit PhantomPDF Mac and Foxit Reader Mac, to address a vulnerability that could result in code injection or information disclosure.

Researchers Disclose New Methods for Replacing Content in Signed PDF Files
2020-07-23 14:12

A team of researchers from the Ruhr University Bochum in Germany has disclosed a series of new attack methods against signed PDF files. Dubbed Shadow Attacks, the new techniques allow a hacker to hide and replace content in a signed PDF document without invalidating its signature.

Foxit PDF Reader, PhantomPDF Open to Remote Code Execution
2020-04-20 18:18

Foxit Software has released patches for dozens of high-severity flaws impacting its PDF reader and editor platforms. Overall, Foxit Software patched flaws tied to 20 CVEs in Foxit Reader and Foxit PhantomPDF for Windows.

Foxit PDF Reader Vulnerable to 8 High-Severity Flaws
2019-10-03 16:23

Eight high-severity vulnerabilities exist in the Foxit Reader tool for editing PDF files.

PDF encryption standard weaknesses uncovered
2019-10-03 12:12

Researchers have discovered weaknesses in PDF encryption which could be exploited to reveal the plaintext contents of a file to an attacker.

PDFex attacks can exfiltrate content from encrypted PDF documents
2019-10-02 13:28

Researchers from Ruhr University Bochum and Münster University of Applied Sciences have devised new attacks allowing them (and potential attackers) to recover the plaintext content of encrypted...

Hack Breaks PDF Encryption, Opens Content to Attackers
2019-10-02 10:21

PDFex can bypass encryption and password protection in most PDF readers and online validation services

Researchers Find New Hack to Read Content Of Password Protected PDF Files
2019-10-01 17:49

Looking for ways to unlock and read the content of an encrypted PDF without knowing the password? Well, that's now possible, sort of—thanks to a novel set of attacking techniques that could allow...