5/15/2023 0 Comments Adobe shockwave google chromeShould those links be clicked, the users would be directed to a website hosting the exploit, which would automatically be downloaded to users’ devices.Īny user of Flash who has not set the software to update automatically is advised to download the latest version as soon as possible. This is a common technique used by hackers in spear phishing campaigns. The campaign took advantage of recent news events to convince users to click on the links. The hackers devised spear phishing campaigns which directed their targets to web pages that hosted the exploit. The exploit has not been reported to have been used to target healthcare providers, but Pawn Storm has used the exploit to target government ministries according to TrendMicro. The patch was originally scheduled to be released this week however, Adobe released the emergency patch on Friday last week, just three days after it issued another patch to address 13 other critical security vulnerabilities.Īn announcement made by Adobe earlier this week explained the seriousness of the 13 vulnerabilities, indicating “could potentially allow an attacker to take control of the affected system.” The same is true of the latest vulnerability, although in the latest case, it is not a case of “could” but “has already been.” The new patch also fixes two other security vulnerabilities discovered in Adobe Flash earlier this month. New Adobe Flash “Critical” Zero Day Security Flaw PatchedĪ critical Adobe Flash security flaw discovered by Google’s Project Zero and Trend Micro’s Peter Pi, has now been patched by Adobe days ahead of schedule.
0 Comments
Leave a Reply. |