Adobe

(get it in RSS or Atom)

Blackberry releases first security fixes for new Z10 smartphone

by Chester Wisniewski on June 12, 2013 | 4 Comments
shutterstock_NoFlash250

Blackberry released the first two security advisories for its new Z10 smartphone yesterday. One of the patches was for Adobe Flash vulnerabilities from January. Flash? On a smartphone? In 2013?

Patch Tuesday June 2013 - Office, Windows and Flash

by Chester Wisniewski on June 11, 2013 | 1 Comment
Patch Tuesday

Right on time, Microsoft and Adobe released fixes today for Windows, Internet Explorer, Microsoft Office 2003 and 2011 and Adobe Flash Player. Time to dance that familiar dance and get those updates installed.

May Patch Tuesday critical for users of Internet Explorer and web-based services

by Chester Wisniewski on May 14, 2013 | 3 Comments
Patch Tuesday

Microsoft has just released its monthly updates for May 2013. The zero-day IE flaw used on the Dept of Labor website was fixed, as well as an IE 10 hole used at PWN2OWN.

Critical fixes for Adobe Reader, Flash Player and ColdFusion also hit the streets today.

Monday review - the hot 21 stories of the week

by Anna Brading on April 15, 2013 | Leave a comment
Monday review

In case you missed anything, here's everything we wrote in the past seven days.

Adobe updates are no laughing matter, but at least XKCD makes them funny

by Graham Cluley on April 10, 2013 | 6 Comments
Adobe updates are no laughing matter, but at least XKCD makes them funny

Check out this funny security-related cartoon from those amusing folks at XKCD.

(If you're not busy installing Adobe updates)

Microsoft fixes 9 flaws, Adobe 3 in April's Tuesday update

by Chester Wisniewski on April 9, 2013 | 3 Comments
Patch Tuesday

As expected Microsoft released seven important and two critical fixes for Windows, Internet Explorer and other Microsoft products. Adobe followed suite releasing fixes for ColdFusion, Flash and Shockwave. Patch now!

Monday review - the hot 26 stories of the week

by Anna Brading on March 11, 2013 | 2 Comments
dow-250

In case you missed it: Here's everything we wrote last week.

PWN2OWN results Day Two - Adobe Reader and Flash owned, Java felled yet again

by Paul Ducklin on March 8, 2013 | 6 Comments

PWN2OWN 2013 finished off today.

A second scheduled attack on IE 10 didn't happen, so IE 10 didn't get owned again, but Flash and Reader fell once each, and Java was exploited for the fourth time in two days...

PWN2OWN results Day One - Java, Chrome, IE 10 and Firefox owned

by Paul Ducklin on March 7, 2013 | 14 Comments

Of the Big Four browsers, only Apple's Safari has so far survived the onslaught of the browser-breakers at PWN2OWN 2013.

Java fell three times today; Adobe's Flash and Reader meet their attackers tomorrow...

Find a new way of exploiting Chrome, IE, Java, etc.. and you could win millions of dollars

by Graham Cluley on March 6, 2013 | 2 Comments
Find a new way of exploiting Chrome, IE, Java, etc.. and you could win millions of dollars

Security researchers are gathering in Vancouver at the CanSecWest conference, in the hope of winning substantial cash prizes for finding exploitable vulnerabilities in the likes of Chrome, Internet Explorer and Java.

Apple bans outdated Adobe Flash plugins from Safari

by Paul Ducklin on March 4, 2013 | 5 Comments
apple-and-flash-250

Last week, Apple showed that it is getting more serious about security by getting strict about the version of Flash you're allowed to use in Safari.

Paul Ducklin explains the what and the why...

Adobe tells users to update Flash Player for the third time this month

by Graham Cluley on February 27, 2013 | 12 Comments
Adobe tells users to update Flash Player for the third time this month

Adobe tells computer users to protect themselves against "targeted attacks" that are being "exploited in the wild".

And that means patching Adobe Flash. Again.

Monday review - the hot 22 stories of the week

by Anna Brading on February 25, 2013 | Leave a comment
dow-250

Catch up with anything you might have missed last week – it’s weekly roundup time.

SSCC 103 - Mandiant report, iOS coders owned, Twitter accounts hacked, and more...

by Paul Ducklin on February 24, 2013 | 1 Comment
chet-chat-feat

Have your joined thousands of others, and become a loyal listener to the "Chet Chat" yet?

Here's the latest Naked Security podcast, Sophos Security Chet Chat 103, discussing a range of recent and newsworthy topics from the world of computer security.

That was quick! Adobe's emergency patch for Reader and Acrobat is here...

by Paul Ducklin on February 21, 2013 | 4 Comments
adobe-reader-250

Adobe has released the emergency update for Reader and Acrobat that it promised late last week.

You may as well take advantage of Adobe's new-found velocity and get busy patching!

Monday review - the hot 21 stories of the week

by Anna Brading on February 18, 2013 | Leave a comment
Monday review - the hot 24 stories of the week

Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.

No patch yet for Adobe PDF exploits - Adobe suggests a workaround; Mac and Linux users need not apply

by Paul Ducklin on February 14, 2013 | 21 Comments
No patch yet for Adobe PDF exploits - Adobe suggests a workaround, but Mac users need not apply

Adobe issues advice on how to mitigate the latest exploits against its PDF Reader software.

For Windows users, anyway. Mac and Linux fans are still out in the cold.

Anatomy of a targeted attack - SophosLabs explores an Adobe zero-day "malware experiment"

by SophosLabs on February 14, 2013 | 7 Comments

SophosLabs was contacted recently to help investigate malware from an unusual sort of targeted attack.

What our researchers found was intriguing, to say the least, so we thought we'd share our discoveries with you...

Adobe investigates PDF Reader zero-day vulnerability reports

by Graham Cluley on February 13, 2013 | 3 Comments
Adobe investigates PDF Reader zero-day vulnerability reports

Adobe's security team has said that it is investigating reports of a brand new zero-day vulnerability affecting its Adobe Reader and Acrobat XI (11.0.1) products.

Always be wary of opening unsolicited PDF files!

SSCC 102 - Probably the best 15 minute security podcast you'll hear today

by Naked Security writer on February 12, 2013 | 10 Comments
Sophos security Chet Chat podcast 102

Have your joined thousands of others, and become a loyal listener to the "Chet Chat" yet?

Here's the latest Naked Security podcast, Sophos Security Chet Chat 102, discussing a range of recent and newsworthy topics from the world of computer security.