Major Malicious PDF attack underway using Adobe exploit
Please be very cautious with any PDF files received in EMAIL messages
If you use Adobe, it's very important to move to the latest version 8.1.1 plus keep AV protection updated.
Malicious PDF files being spammed out in volume
QUOTE: Malicious PDF files (report.pdf or debt.2007.pdf or overdraft.2007.10.26.pdf, etc) have been massively spammed through email during last hour and the spam run is still continuing. The PDF is spiced with CVE-2007-5020 exploit that downloads ms32.exe that downloads more componets. At this point it's not clear yet what is the final payload of the malware, because of missing files in the download chain. We are investigating further.
The subjects for the spam messages include:
Your credit report
Your credit points
Your balance report
Personal Financial Statement
Personal Credit Points
Personal Balance Report
Your Credit File
Trend's Exploit Detection
Trend - Behavioral Diagram