Printed from http://www.electronista.com

Adobe posts new Flash fix to block attacks linked to non-profit sites

updated 04:32 pm EST, Thu February 20, 2014

At least three websites attacked so far

Adobe has issued a new version of Flash Player, 12.0.0.70, to deal with a serious vulnerability. Security firm FireEye notes that the hole has already been used to attack at least three non-profit websites. "This threat actor clearly seeks out and compromises websites of organizations related to international security policy, defense topics, and other non-profit sociocultural issues," it writes. "The actor either maintains persistence on these sites for extended periods of time or is able to re-compromise them periodically.

"This actor also has early access to a number of zero-day exploits, including Flash and Java, and deploys a variety of malware families on compromised systems. Based on these and other observations, we conclude that this actor has the tradecraft abilities and resources to remain a credible threat in at least the mid-term."

The update is Adobe's second for Flash in the space of a month. Flash and Java are two of the most common vectors for malware attacks.



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

  1. nouser

    Fresh-Faced Recruit

    Joined: 04-29-12

    Surprise, surprise... was there ever a single version of Flash that wasn't a serious security problem?

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Sponsor

Recent Reviews

Dell AD211 Bluetooth speaker

For all of the high-priced, over-engineered Bluetooth speakers in the electronics market, there is still room for mass-market solution ...

VisionTek 128GB USB Pocket SSD

USB flash drives dealt the death blow to both the floppy and Zip drives. While still faster than either of the old removable media, sp ...

Kodak PixPro SL10 Smart Lens Camera

Smartphone imagery still widely varies. Large Megapixel counts don't make for a good image, and the optics in some devices are lacking ...

Sponsor

toggle

Most Commented

 
toggle

Popular News