When receiving PDFs from unknown sources, is it sufficient to remove dynamic content to minimise attack surface?
My company allows customers to upload PDFs, JPEGs and PNGs to our servers, which are then viewed by clients. We want to minimise the potential for attack on the clients. While the image formats are generally pretty safe, PDFs introduce mu… Continue reading When receiving PDFs from unknown sources, is it sufficient to remove dynamic content to minimise attack surface?