Adobe

New Mac malware spreads disguised as Flash Player installer via Google search results

Apple Mac users are warned of a new in-the-wild malware threat which masquerades as an installer for Adobe Flash Player.

FBI warns hackers are planting card skimmers on online stores running a vulnerable Magento plugin

The FBI has issued a “flash alert” warning that hackers are planting Magecart-style credit card-skimming code on Magento-powered online stores running an out-of-date plugin.

bitdefender.com

Microsoft worm warning: Windows users urged to patch now

Microsoft is urging computer users to patch their systems now against a critical vulnerability that could be exploited by a fast-moving worm.

Read more in my article on the Hot for Security blog.

Senator calls on US Government to start killing Flash now

For some companies eradicating Adobe Flash Player is going to be a significant job. And it may be an even bigger challenge for very large organisations, such as the US Government.

It’s time to say ‘Welcome to dumpsville Adobe Flash’, as new unpatched flaw exploited by criminals

It’s time to call an end to what can best be called a rocky relationship.

welivesecurity.com

It’s time to patch your Microsoft and Adobe software again against vulnerabilities

It’s the second Tuesday of the month, and you know what that means… Yep, it’s time for another bundle of essential security updates from Microsoft.

Read more in my article on the We Live Security blog.

Adobe’s security team reveals its private PGP key

A careless finger fumble can easily put the security of your organisation at risk. Take care if cutting-and-pasting PGP keys!

Smashing Security podcast #036: Flash? Clunk flush… and hacking security researchers

A security threat researcher is badly hacked in a revenge attack. Some people want to save Adobe Flash, but is that wise? And a poorly-secured electronic billboard starts displaying offensive images…

All this and much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.

welivesecurity.com

Adobe Flash Player users should update their software NOW

Critical security holes keep being found in Adobe Flash Player. Have you updated yours yet?

Read more in my article on the We Live Security blog.

Want to watch HSBC’s security awareness videos? You’d best have Flash installed…

If you don’t give your customers a different way to consume your content, they’re going to feel forced to (shudder…) install Adobe Flash.

Good news and bad news on the Microsoft patch front

Microsoft belatedly patches some vulnerabilities in Adobe Flash Player, but some zero-days in other software remain untouched for now.

tripwire.com

Adobe Acrobat auto-installed a vulnerable Chrome extension on Windows PCs

Adobe is no stranger to finding itself in the security headlines for all the wrong reasons, and it seems that things may not be changing as we enter 2017.

Read more in my article on the Tripwire State of Security blog.

Adobe Flash responsible for six of the top 10 bugs used by exploit kits in 2016

Of the top 10 vulnerabilities incorporated by exploit kits in 2016, six of them (rather unsurprisingly) affected Adobe Flash Player.

David Bisson reports.

Google Pixel, Safari, and Microsoft Edge all pwned at PwnFest 2016

Vulnerability researchers broke the Google Pixel, Apple’s Safari browser, and the Microsoft Edge browser running on Windows 10 at PwnFest 2016.

David Bisson reports.

Patch Flash NOW

Shock – horror!

There’s another critical security exploit in Adobe Flash, and it is being actively exploited in targeted attacks.

Update Flash now or… you know… kick it to the kerb.

A patchtastic day for Flash and Windows users – don’t delay!

Don’t drag your feet. If the likes of Adobe and Microsoft describe vulnerabilities as critical it’s important that you patch them at your earliest opportunity.