Adobe's ubiquitous Reader application has replaced Microsoft Word as the program that's most often targeted in malware campaigns, according to figures compiled by F-Secure.
Files based on Reader were exploited in almost 49 per cent of the targeted attacks of 2009, compared with about 39 per cent that took aim at Microsoft Word. By comparison, in 2008, Acrobat was targeted in almost 29 per cent of attacks and Word was exploited by almost 35 per cent.
"Why has it changed?" F-Secure asks here. "Primarily because there has been more vulnerabilities in Adobe Acrobat/Reader than in the Microsoft Office applications."
Underscoring the surge of Reader attacks, online thugs recently unleashed a new malware campaign that exploits vulnerabilities patched three weeks ago in the widely-used program. The attacks target financial institutions with a PDF file with a name that refers to the so-called Group of 20 most influential economic powers. F-Secure and Microsoft have additional details here and here.