|
|
|
|
|
|
by CrispinS
1437 days ago
|
|
|
I can't believe a software developer is using an operating system/pdf viewer that isn't patched for security vulnerabilities as major as an RCE. Unless this was a zero day, but I would have assumed the article would mention that fact .. |
|
|
"Hey, you need a PDF viewer with scripts enabled for the digital signing.. can you install Adobe XXX?" would be a good line to get the mark to use a less-than-secure PDF viewer.
But also, since it was the North Korea hacking group, I'm not ruling out a 0-day... hopefully more details will come at some point.