Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I've always held the opinion that viewing PDFs in something other than Adobe Acrobat gives the user more of a chance of avoiding such attacks... is there any credence to this or is it just wishful thinking?


I've tried creating a PDF Canarytoken [0] and opening it in a few applications not including Adobe Acrobat. None of them triggered the canary.

[0]: https://canarytokens.org/nest/


Acrobat implements more features than say muddy I assume. So in terms of attack surface it would be riskier, But maybe they have more security analysts too..




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: