It appears to be that Adobe Acrobat is blocking most antivirus computer software (opens in new tab) from scanning PDF information at start, placing buyers at danger.
The issue was to start with recognized by cybersecurity scientists from Minerva Labs. As reported by BleepingComputer, Minerva spotted Adobe Acrobat scanning for DLL files from 30 protection solutions, to see if they’re loaded into memory while it is active. These solutions also include things like the industry’s heavy hitters, such as Bitdefender, Avast, Pattern Micro, Symantec, Malwarebytes, ESET, Kaspersky, F-Secure, Sophos, and Emsisoft.
If it finds any, it “most likely” blocks them, blocking any checking activity, the report states.
A identified concern
“Since March of 2022 we have observed a gradual uptick in Adobe Acrobat Reader procedures attempting to question which safety products DLLs are loaded into it by getting a cope with of the DLL,” Minerva Labs described.
Bleeping Laptop or computer also observed a person complaint on the Citrix discussion board, indicating Sophos’ Antivirus began receiving problems right after an Adobe item was set up, and that the business instructed disabling DLL-injection for Acrobat and Reader.
“We are knowledgeable of reviews that some DLLs from protection equipment are incompatible with Adobe Acrobat’s usage of CEF, a Chromium centered motor with a restricted sandbox style, and may perhaps bring about stability difficulties,” wrote Adobe, in response to problems.
At the moment, it’s operating on a deal with, to “ensure good operation with Acrobat’s CEF sandbox style heading forward.”
According to Minerva Labs, between compatibility problems and disabling antivirus solutions, Adobe chose the latter, putting its customers at actual hazard of malware (opens in new tab), ransomware (opens in new tab), and other nasties lurking in the depths of the world wide web.
PDF files are acknowledged to have been utilized by risk actors in the previous. Only not long ago, researchers noticed a marketing campaign that employs PDF documents, by way of which destructive Phrase data files were being remaining distributed to concentrate on endpoints.
Via BleepingComputer (opens in new tab)