Adobe's security team has said that it is investigating reports of a brand new zero-day vulnerability affecting its Adobe Reader and Acrobat XI (11.0.1) products.
Always be wary of opening unsolicited PDF files!
The first Patch Tuesday of 2013 is here and there are plenty of important fixes to download including two critical Windows flaws and critical updates to Adobe Reader and Adobe Flash Player.
The vulnerability is selling for up to $50K on the black market, security researchers say, and has been included in a package of banking Trojans called the Blackhole Exploit Kit, which is the most prevalent exploit kit out there.
Adobe PDF vulnerability exploitation caught on camera.
Sophos security expert Chet WIsniewski demonstrates how malicious PDFs can infect your computer.
GovCertUK, the UK Government's Computer Emergency Response Team, had issued an alert warning that attackers could bypass gateway anti-virus software to infect organisations, by encoding malicious PDF files into the XDP format.
The UK branch of the ticketing firm Ticketmaster has warned its online customers that they might have received a series of unauthorised emails after its TicketWeb subsidiary's mailing list system was compromised.
Microsoft and Adobe have released their Patch Tuesday security bulletins for January 2012. Microsoft has finally gotten around to mitigating the BEAST, while Adobe updates Reader X to include fixes that were rushed out to vulnerable Reader 9 users.
A new malicious spam campaign underlines the security benefits of upgrading to the latest version of Adobe Reader X.
SophosLabs researcher Paul Baccas takes a closer look.
Adobe has released an update to Acrobat and Reader this week to address several flaws. The vulnerabilities are patched in Acrobat/Reader versions 9.3.4 and 8.2.4. In addition to fixing the vulnerabilities that were fixed in Flash on August 10th this Read more…
Adobe has become the whipping boy for many security pundits over the last 24 months, but today they have made the most public move to change that opinion since announcing a new security strategy in May 2009. Brad Arkin their Read more…