Information Security Advisory (ISO § 6.1.2 d,f)

July 3, 2007

To:        All BGSU Faculty, Staff, Students

From:    ITS Information Security & Privacy

Subject:  E-mail with PDF file attachments containing SPAM

Brief...

DISCLAIMER

Risk:      Unwanted e-mail with un-trusted attachments.
Impact:    Attachments could contain malware or trojans, could lead to compromise
Solution:  Do not open unexpected PDF files or attachments

Risk

System Information: Any operating system that opens Portable Document Format (PDF) files. Adobe Acrobat is a common program used to open/edit PDF files.

Although initial reports confirm that the attached PDF files contain image SPAM, future e-mail could contain additional unwanted malware or trojan software.

Impact

System compromise and execution of arbitrary code.

Solution

Do not open un-trusted or unexpected PDF attachments. Confirm PDF files from trusted e-mail sources for additional safety.

More...

McAfee Avert Labs Blog - June 27, 2007.

DISCLAIMER: Information Security Advisories and related resources provide technical and administrative advice to protect sensitive information on the University network and to help BGSU comply with regulations pertaining to information security.  Failure to comply with these advisories may directly or indirectly increase the risk of exposure or compromise of sensitive University information.  These advisories and resources do not provide legal advice – contact the BGSU Office of General Counsel or other appropriate legal advisor for interpretations of regulations.