Members
  • Total Members: 14197
  • Latest: Levine
Stats
  • Total Posts: 43434
  • Total Topics: 16528
  • Online today: 3114
  • Online ever: 51419
  • (01. January 2010., 10:27:49)
Users Online
Users: 2
Guests: 3074
Total: 3076









Author Topic: Hackers may slip through hole found in Adobe tools  (Read 3231 times)

0 Members and 1 Guest are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7529
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Hackers may slip through hole found in Adobe tools
« on: 27. July 2009., 07:14:16 »


Cybercriminals may have a clear path to spread mayhem on computers this week by taking advantage of a newly discovered vulnerability in Adobe's (ADBE) ubiquitous Flash video player and Acrobat Reader, the widely used tool for opening PDF documents.

Since early July, troublemakers have been e-mailing PDF files with corrupted Flash video clips and hacking into websites to implant them. These clips, when activated, enable attackers to quickly install malicious programs on the user's computer.

Criminals typically take control of PCs, turning them into obedient "bots." They can use bot networks to steal data, siphon cash from online financial accounts, spread spam and trigger promotions to sell fake anti-virus programs.

The number of attacks could soar this week as Adobe scrambles to develop an emergency patch by Friday. The company recently began issuing security patches once a quarter, with the next update scheduled on Sept. 8.

"The volume of cybercrime has been increasing, so we've stepped up our efforts to supply best-in-class security," says Rob Tarkoff, Adobe's senior vice president and general manager of business productivity.

But even that might not solve the problem. Adobe alerts computer users every seven days about software updates that can include security patches, but users often defer installing such updates.

As a result, "We may see a broad-scale explosion of attacks," says Paul Royal, a senior researcher at Purewire.

The security firm has already found a booby-trapped e-mail sent to a corporate executive.

Last week, another security firm, Finjan Software, found several dozen legitimate Web pages carrying poisoned Flash clips.

Tarkoff says Adobe is doing all it can.

"Every software product is a target," he says. The challenge is to find a way to keep offering new features without creating new security problems. "That's (the balance that) we're focused on striking."

That balancing act may grow more difficult as cybercriminals probe for more weaknesses in Adobe programs.

Some 43% of the 1,500 cyberattacks identified by security firm F-Secure in the first six months of 2009 were directed at Acrobat Reader, up from nearly 29% last year.

That puts Acrobat Reader ahead of Microsoft Word, targeted in 40% of this year's attacks.

"Adobe has become the victim of its own success," says Don Leatham, director of solutions and strategy at security firm Lumension.

"They've become a very juicy target, and they need to significantly increase their efforts to secure and stabilize their code."

(USA Today)

Samker's Computer Forum - SCforum.info

Hackers may slip through hole found in Adobe tools
« on: 27. July 2009., 07:14:16 »

dimmortal

  • SCF Member
  • **
  • Posts: 13
  • KARMA: 1
Re: Hackers may slip through hole found in Adobe tools
« Reply #1 on: 05. August 2009., 03:27:14 »
ive heard alot about this....but i have yet to see any one who has been infected in this way

Samker's Computer Forum - SCforum.info

Re: Hackers may slip through hole found in Adobe tools
« Reply #1 on: 05. August 2009., 03:27:14 »

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.codekids.ba:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Kursevi programiranja za ucenike u Sarajevu

Terms of Use | Privacy Policy | Advertising
TinyPortal 2.3.1 © 2005-2023