Why does Stack Overflow scan your resume for viruses? | HN Mirror

Y	Hacker News new \| ask \| show \| jobs

	Why does Stack Overflow scan your resume for viruses?
	5 points by chrisstpierre 2607 days ago
	I just uploaded my resume to Stack Overflow, and it shows "scanning for viruses". Is it really necessary to scan a pdf for viruses?

3 comments

suramya_tomar 2605 days ago

Yes, because there are ways to trigger a malware install or Viruses using a PDF files.

Example:

* https://www.welivesecurity.com/2018/05/15/tale-two-zero-days... (a remote-code execution vulnerability in Adobe Reader and a privilege escalation vulnerability in Microsoft Windows triggered via PDF)

* https://blogs.quickheal.com/beware-pdf-attachments-launching... (PDF's launching Android Malware)

* https://www.sans.org/security-resources/malwarefaq/pdf-overv... (A slightly dated FAQ on PDF Malware)

LiamPa 2607 days ago

Any file uploaded should be scanned especially when you are uploading something which is then downloadable by someone else such as this example.

detaro 2607 days ago

PDFs have been a major malware vector.