Protecting over 200 million PCs, Macs, & Mobiles – more than any other antivirus

May 5th, 2011

CARO: Half of all computers running vulnerable versions of Adobe PDF Reader

Half of all avast! users are running an older versions of Adobe Reader on their computers that are vulnerable to a variety of malware attacks.

The avast! Virus Lab found that 49.41% of avast users were using the older Adobe Reader versions as of end-April. The number was also surprisingly stable, dropping by around five percentage points from the early March level of 55.71%.

“The numbers were a surprise to us,” said Jiri Sejtko, head virus analyst. “Because the avast! user pool is so large, this is a statistically significant indication of how vulnerable all computers are around the world.” The Virus Lab obtained the data on Adobe Readers from a global survey of users in the avast! CommunityIQ sensor system.

The older versions of Adobe are vulnerable to a variety of infected PDF files. Detecting these files was the theme of the Virus Lab’s “Grabbing the PDF by the tail” presentation at the CARO 2011 Workshop in Prague.

The technical presentation primarily looked the difference between structural heuristics and JavaScript heuristics. Structural heuristics work on a limited subset of files and are focused on PDF format and some file abnormalities. JavaScript heuristics rules have a wider, almost complete coverage.

“PDFs are an ideal channel for spreading malware,” said Jindrich Kubec, head of the avast! Virus Lab. “The bad guys don’t sleep, so combining detection techniques is really the way to go for anitivirus programs. For users, they need to make sure that their PDF reader is fully updated.”

 

  1. Lynn Mayne
    May 6th, 2011 at 12:58 | #1

    I am one of them, i keep getting updates, but i had so much trouble loading the last one, i have been putting it off… think its time to update thanks for the warning…

  2. David Oshel
    May 6th, 2011 at 13:55 | #2

    Something the article didn’t touch on, just what version is considered old? Is it anything older than v8? v9? v10? I wasn’t crazy about the user interface in v10 so I’m running v9…am I at risk??

  3. May 6th, 2011 at 15:04 | #3

    @David Oshel
    Visit http://get.adobe.com/reader/ and it should show you which is the current version to be using.

  4. Abdulah
    May 6th, 2011 at 15:53 | #4

    I don’t use Adobe reader @ all :) , foxit Reader is much more simple and has all the features that I need. On top of that, I use chrome’s PDF reader which also runs in the sandbox which means, I’m good to go :)

  5. May 6th, 2011 at 20:16 | #5

    @Abdulah
    Chrom has a great “feature” when somebody is trying open PDF and chrom is not able to do it it will offer you open that PDF in adobe:)

  6. Rednose
    May 6th, 2011 at 22:49 | #6

    As I use AIS, I have Adobe Reader sandboxed ;)

    Greetz, Red.

  7. May 11th, 2011 at 16:58 | #7

    i need avast!

  8. May 14th, 2011 at 23:29 | #8

    Why is anyone still using Adobe Reader for Windows? If you must use it, keep it up to date to avoid problems.
    James M Singleton

  9. May 15th, 2011 at 00:15 | #9

    I don’t use Adobe PDF Reader, I noticed their software is vulnerable to many things, I enjoy Nitro PDF Much more.

    Plus you can get plug-ins on Mozilla Firefox to view PDF Files Online!

  10. Irfan Nurhadi Satria
    May 16th, 2011 at 03:17 | #10

    Ah, I use SumatraPDF myself. Not only it’s completely free (and open source :) , it is fast, and have Firefox/Chrome/Opera plug-in too.. Shame the feature list is not that good, but since I’m a home user, it’s fine by me.

  11. Fernando Gregoire
    May 17th, 2011 at 02:44 | #11

    I keep the programs up to date when possible. Sometimes I need to use old versions because accessibility challenges.

  12. May 21st, 2011 at 09:15 | #12

    I prefer foxit reader , smaller , faster and less exploits(i remember two !)

  13. shre54321
    May 24th, 2011 at 07:30 | #13

    thanks for protecting us avast!i luv avast!!!!

Comments are closed.