Acrobat

(get it in RSS or Atom)

That was quick! Adobe's emergency patch for Reader and Acrobat is here...

by Paul Ducklin on February 21, 2013 | 4 Comments
adobe-reader-250

Adobe has released the emergency update for Reader and Acrobat that it promised late last week.

You may as well take advantage of Adobe's new-found velocity and get busy patching!

No patch yet for Adobe PDF exploits - Adobe suggests a workaround; Mac and Linux users need not apply

by Paul Ducklin on February 14, 2013 | 21 Comments
No patch yet for Adobe PDF exploits - Adobe suggests a workaround, but Mac users need not apply

Adobe issues advice on how to mitigate the latest exploits against its PDF Reader software.

For Windows users, anyway. Mac and Linux fans are still out in the cold.

Adobe investigates PDF Reader zero-day vulnerability reports

by Graham Cluley on February 13, 2013 | 3 Comments
Adobe investigates PDF Reader zero-day vulnerability reports

Adobe's security team has said that it is investigating reports of a brand new zero-day vulnerability affecting its Adobe Reader and Acrobat XI (11.0.1) products.

Always be wary of opening unsolicited PDF files!

Patch Tuesday - what to know and what to do for Microsoft and Adobe users

by Paul Ducklin on August 15, 2012 | 10 Comments
Patch Tuesday - what to know and what to do for Microsoft and Adobe users

Both Adobe and Microsoft published Patch Tuesday updates this week.

There are plenty of issues to be concerned about - so we've written up our recommendations to help you prioritise your own patching...

Patch Tuesday April 2012 - Critical updates for Windows, Office and Adobe Reader

by Chester Wisniewski on April 11, 2012 | 1 Comment
Patch Tuesday for October 2012

Microsoft released six patches for eleven vulnerabilities today for Windows, Office, SQL and other products. Adobe also updated their Reader app to fix four vulnerabilities that can be exploited by malicious PDF files.

How NOT to redact a PDF - Military radar secrets spilled

by Graham Cluley on October 9, 2011 | 7 Comments
How NOT to redact a PDF - Air defence radar secrets spilled

The UK Ministry of Defence has been caught out again by a schoolboy error - not knowing how to properly redact a PDF.

As we've explained before, if you're an organisation that is making public an internal document, you best make sure that you have deleted or blacked out any personal, confidential or actionable information.

Patch Tuesday part two - Adobe patches Reader, Flash and more

by Chester Wisniewski on June 15, 2011 | 1 Comment
adobe logo

Adobe's Patch Tuesday quarterly release is out and fixes many critical vulnerabilities. Time to patch Reader, Acrobat, Shockwave, Flash, ColdFusion, LifeCycle and Blaze...

How NOT to redact a PDF - Nuclear submarine secrets spilled

by Graham Cluley on April 18, 2011 | 6 Comments
How NOT to redact a PDF - Nuclear submarine secrets spilled

A silly error leaves egg on the face of the British military - but have you learnt the lessons of how to properly redact a PDF?

Who ordered spam? New trick in PDF malware uncovered

by Paul Baccas on April 18, 2011 | 4 Comments
Who ordered spam? New trick in PDF malware uncovered

SophosLabs researcher Paul Baccas takes a close look at a PDF malware campaign.

Adobe issues critical zero-day patch for Reader and Acrobat

by Carole Theriault on March 23, 2011 | 1 Comment
adobe logo

Adobe have just released an out-of-cycle patch to address a critical vulnerability (CVE-2011-0609) in Adobe Reader and Acrobat for Windows and Mac. Naked Security recommends that all users update now.

Patch Tuesday for February 2011 - Adobe and Microsoft

by Chester Wisniewski on February 9, 2011 | 3 Comments
bandaid250

Microsoft released 12 fixes as part of their monthly Patch Tuesday and Adobe released critical fixes for Flash Player, Shockwave Player and Adobe Reader/Acrobat. Read on to find out why you should update now!

PDF security under the microscope: A review of OMG-WTF-PDF

by Paul Baccas on January 24, 2011 | 1 Comment
pdf-microscope-thumb

SophosLabs researcher Paul Baccas takes a close look at a PDF security research paper written by FireEye's Julia Wolf.

Confused by Adobe? There's a security update in there somewhere!

by Paul Ducklin on November 16, 2010 | 4 Comments
adobe-250-250

If you've been following Adobe news this week, you're probably as confused as I am.

The big news is that Adobe Acrobat X is out. But what else do you need to know?

Critical zero-day vulnerability found in Adobe Flash, Reader, Acrobat

by Graham Cluley on October 28, 2010 | 11 Comments
Adobe products suffer from critical vulnerabilities

Adobe Flash, Reader and Acrobat are vulnerable to security holes that could allow malicious hackers to take control over your computer.

Mammoth security patch rushed out for Adobe Acrobat and Reader

by Graham Cluley on October 6, 2010 | Leave a comment
Adobe logo

Adobe has issued a security bulletin urging users of its Adobe PDF Reader and Acrobat products to update their software before hackers take advantage of at least 23 vulnerabilities in the software. In a clear sign of the seriousness posed Read more…

A lesson in heuristic PDF detection

by Chester Wisniewski on September 30, 2010 | Leave a comment
vb2010

Many of you are all too aware of the number of patches repairing flaws in Adobe's Reader and Acrobat software in the last couple of years. Their PDF reader is deployed on nearly all computers, which is too juicy of Read more…

Adobe races to patch zero-day vulnerability in Flash Player

by Graham Cluley on September 14, 2010 | Leave a comment
Adobe Flash

Adobe has issued a security advisory about an as-yet unpatched vulnerability in its popular Flash Player software, affecting users of Windows, Mac, Linux, Solaris and even Google Android. The critical security hole could allow an attacker to take control of Read more…

Adobe advises on new Reader and Acrobat vulnerability

by Chester Wisniewski on September 8, 2010 | Leave a comment
Default image

Update: After analyzing the payload that is downloaded by the in the wild sample provided by @snowfl0w I can report that Sophos detects the payload as Troj/Agent-OOH. Kaspersky is reporting that payloads have been seen that are digitally signed using Read more…

Adobe is listening - Announces Adobe Reader with sandbox mode

by Chester Wisniewski on July 21, 2010 | Leave a comment
Acrobat logo in a sandbox

Adobe has become the whipping boy for many security pundits over the last 24 months, but today they have made the most public move to change that opinion since announcing a new security strategy in May 2009. Brad Arkin their Read more…

Adobe products struck by zero-day attacks

by Graham Cluley on June 5, 2010 | Comments Off
Adobe products struck by zero-day attacks

Adobe's products are once again in the firing line, as hackers are reportedly exploiting critical unpatched vulnerabilities in the products Adobe Reader, Acrobat and Flash Player. Adobe has published a security advisory describing the problems which affect users regardless of Read more…