Adobe Reader

(get it in RSS or Atom)

Patch Tuesday January 2014 - Microsoft, Adobe and Oracle

istock_patchtuesday250

Microsoft, Adobe and Oracle have all released fixes today. Products covered include Microsoft Word, Windows XP, Windows 7, Adobe Reader, Java, MySQL and VirtualBox.

Adobe investigates PDF Reader zero-day vulnerability reports

Adobe investigates PDF Reader zero-day vulnerability reports

Adobe's security team has said that it is investigating reports of a brand new zero-day vulnerability affecting its Adobe Reader and Acrobat XI (11.0.1) products.

Always be wary of opening unsolicited PDF files!

Microsoft and Adobe issue first Patch Tuesday of 2013

Patch Tuesday critical fixes for July 2012

The first Patch Tuesday of 2013 is here and there are plenty of important fixes to download including two critical Windows flaws and critical updates to Adobe Reader and Adobe Flash Player.

Monday review: the hot 20 stories of the week

Monday review: the hot 20 stories of the week

It's weekly roundup time - here's everything we published in the last seven days.

Adobe Reader zero-day exploit thwarts sandboxing

Adobe Reader zero-day exploit thwarts sandboxing

The vulnerability is selling for up to $50K on the black market, security researchers say, and has been included in a package of banking Trojans called the Blackhole Exploit Kit, which is the most prevalent exploit kit out there.

How PDFs can infect your computer via Adobe Reader vulnerabilities [VIDEO]

Adobe Reader vulnerability. How PDFs can infect your computer [VIDEO]

Adobe PDF vulnerability exploitation caught on camera.

Sophos security expert Chet WIsniewski demonstrates how malicious PDFs can infect your computer.

Encoding malicious PDFs as XDP files to bypass anti-virus? No need to panic

Encoding malicious PDFs as XDP files to bypass anti-virus? No need to panic

GovCertUK, the UK Government's Computer Emergency Response Team, had issued an alert warning that attackers could bypass gateway anti-virus software to infect organisations, by encoding malicious PDF files into the XDP format.

Ticketmaster warns of hacked mailing list, Adobe Reader spams sent out

Ticketmaster warns of hacked mailing list, spams sent out

The UK branch of the ticketing firm Ticketmaster has warned its online customers that they might have received a series of unauthorised emails after its TicketWeb subsidiary's mailing list system was compromised.

First Patch Tuesday of 2012 covers 7 MS bulletins, 6 Adobe and tackles the BEAST

Patch Tuesday critical fixes for July 2012

Microsoft and Adobe have released their Patch Tuesday security bulletins for January 2012. Microsoft has finally gotten around to mitigating the BEAST, while Adobe updates Reader X to include fixes that were rushed out to vulnerable Reader 9 users.

Targeted emails exploit new Acrobat Reader vulnerability

Target was warned of payment system vulnerabilities before data breach

Attackers are taking advantage of the latest zero-day vulnerability in Adobe's Reader software sending malicious attachments to specific targets. Adobe promises a fix is coming by the week of December 12 at the latest and Reader X users are protected already.

Adobe Reader X stops malicious PDF spam campaign dead in its tracks

adobe-reader-x-thumb

A new malicious spam campaign underlines the security benefits of upgrading to the latest version of Adobe Reader X.

SophosLabs researcher Paul Baccas takes a closer look.

Adobe Reader X with sandboxing now available

AcrobatX3

Adobe releases Adobe Reader X, complete with a sandbox, in an attempt to improve security.

Adobe Reader fixes and SSCC 22

Adobe logo courtesy of Midiman's Flickr photostream

Adobe has released an update to Acrobat and Reader this week to address several flaws. The vulnerabilities are patched in Acrobat/Reader versions 9.3.4 and 8.2.4. In addition to fixing the vulnerabilities that were fixed in Flash on August 10th this Read more…

Adobe is listening - Announces Adobe Reader with sandbox mode

Acrobat logo in a sandbox

Adobe has become the whipping boy for many security pundits over the last 24 months, but today they have made the most public move to change that opinion since announcing a new security strategy in May 2009. Brad Arkin their Read more…

Adobe contemplates security

Crackerjack surprise creative commons photo courtesy of HermanTurnip

Update: I received a response from @bradarkin Adobe's Director of Product Security and Privacy with corrections to my post. I was unaware of some details and fortunately Brad set me straight. Updates will be noted in-line. If I had a Read more…