All the latest UK technology news, reviews and analysis

Attackers gun for Adobe flaw

by Shaun Nichols

More from this author

12 Nov 2008

Be the first to comment

  • Tweet this
Adobe
The attack remains highly active and hard to spot

Users are being advised to update their systems after the emergence of a new rash of attacks targeting a previously-patched flaw in Adobe Acrobat.

The attacks use specially-crafted PDF files to exploit a vulnerability in the Java component of Adobe Acrobat Reader to perform malware installations on targeted systems.

Further reading

Users can protect against the attacks by updating Adobe Acrobat and Reader to the latest versions. Users running version 9 of either product are not vulnerable to the attack.

The attacks are part of an ongoing effort by malware authors to exploit the vulnerability which was among several patched by Adobe last week.

Although a fix for the vulnerability is available, the attack remains highly active and hard to spot, according to experts.

Sans Institute researcher Swa Frantzen said in a security alert that the malicious package is still very hard for many anti-malware products to identify, and is being updated to evade detection.

Users and administrators who are unsure whether all of their systems are patched should update user policies to prevent downloaded JavaScript from running within PDF files.

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

IBM logo

IBM integrates threat data with security analytics dashboard

Related white papers

Related articles

Related jobs

Today's top stories

Microsoft Windows 8 start screen

Microsoft turns SkyDrive into cloud computing storage tool for Windows 8

PlayBook BlackBerry 2.0 update from Research in Motion

Research in Motion confirms BlackBerry PlayBook 2.0 software update available

Fujitsu Primergy TX120 S3 review - tower

Fujitsu Primergy TX120 S3 review

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

97%

1%

1%

0%

1%

Features

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

testjobpleaseignore (autoupload)

1329899014.71117-2574 testjobpleaseignore (autoupload...

Embedded C, Linux, RTOS, Agile, - Software Engineer - Staines

Embedded C, Linux , RTOS, Agile, MISRA – Embedded...

Software Engineer / Web Developer – Java, JavaScript, SQL

Software Engineer / Web Developer - Java, JavaScript...

C#, Oracle, Winforms, Junior Software Engineer, Central London 25-35k

C# , Oracle , Winforms, Junior Software Engineer – Central...

To send to more than one email address, simply separate each address with a comma.