This attack takes advantage of a vulnerability in Adobe Reader and Acrobat. The official release is here. Adobe has been informed of this vulnerability for well over a month now and has issued a statement that it will release a fix on January 14th. It is a scary thought that this exploit will be live and in the wild for almost 2 months before Adobe decides to fix it. I am making this post in order to make people aware of how such a attack can take place and how easy it is to implement.
A friend of mine contacted me today for help resolving an issue with his insightbb.com email address. When anyone was sending an e mail to him they were getting a rejection message similar to the below email. On initial glance I was pretty sure I knew that the issue was the fact that he was not deleting old emails thus causing the “Over Quota” errors.
On accident today I discovered a really cool plugin for WordPress called the Error Reporting plugin. This plugin is a great tool to log any errors related to WordPress, WordPress plugins, etc. One of the options that the plugin provides is the ability to have each error emailed to you which could be overwhelming depending on what errors you are logging with the plugin. I like to log as much as possible so the problem for me was the fact that the error emails automatically go to the WordPress site administrator email address. My preference would be for this field to be an option that can be configured so I could create a new Gmail address and send all of the errors there. This way you can archive every single error message that has been generated for a long time because of Gmail’s 7GB+ storage capacity. So below I describe how to modify the email address the error logs are sent to along with a couple other items I modified while I was poking around.
There may come a time when you need to hide some sensitive data and send it in a email. Although there are better ways to do this with GPG keys, the old hide the code in some thing else trick is still a good one. The program we will use for this is called steghide. The source and more information can be found here.
I had a customer call me after setting her up with the Thunderbird Email client and ask me a question I did not know the answer to. She wanted to enable spell check on her Email so that it would go through the whole email and check it for spelling errors after the sent button was pressed.