This new phishing kit turns PDF files into malware - here's how to stay safe

• MatrixPDF phishing kit weaponizes PDFs using embedded JavaScript and redirect mechanisms
• It mimics legitimate tools, offering drag-and-drop import, content blur, and Gmail bypass features
• To stay safe, disable JavaScript, avoid suspicious PDFs, and use advanced email security tools

A new PDF phishing kit is being sold on the dark web, promising customers advanced features, a simple interface, and competitive pricing, experts have warned.

Security researchers from Varonis spotted MatrixPDF, an advanced solution being advertised as a legitimate tool, despite being circulated around the dark web.

Its full name is MatrixPDF: Document Builder - Advanced PDF Phishing with JavaScript Actions. It is being advertised as an “elite tool for crafting realistic simulation PDFs tailored for black teams and cybersecurity awareness training.”