TC December 2009

Analyzing Malicious PDF

Plenary Sessions

Tuesday — December 1st, 2009 11:15

The increased prevalence of malicious Portable Document Format (PDF) files has generated interest in techniques to perform analysis on such document format. We have observed a lot of attacks trying to abuse the PDF vulnerabilities by hosting malicious pdf files on the Internet. The modus operandi involved in tricking victims to open malicious PDF files by using social engineering attack. This talk will highlight techniques and issues related to analyzing malicious PDF files.

Presenters

  • Mahmud Ab Rahman (MyCERT — CyberSecurity Malaysia, MY) MY

    Mahmud Ab Rahman is the Manager, Emergency Readiness for MyCERT, CyberSecurity Malaysia. His education background comprises of Master Degree in Computer Science from National University of Malaysia in 2006. Prior to that, he obtained a Degree in Computer Science from the same university. Mahmud has been involved in the computer security field for over 4 years. His area of focus and interest is network security, honeynet, botnet monitoring, and malware analysis. He also engages in several penetration-testing exercises and to provide solutions for any vulnerability detected. Moreover, he is recognized for conducting numbers of training for organizations to talk on topics ranging from introduction to advanced information security courses.