This is starting to get really, really stupid.
Trend Micro has discovered a third Adobe Flash exploit that’s in the wild thanks to the epic hack of Hacking Team. Here’s what Trend Micro had to say:
Similar to the second Adobe Flash vulnerability discussed on Saturday, we have identified proof of concept (PoC) code; however, it has not yet been seen in active attacks or added to exploit kits like the first Adobe zero-day vulnerability, also spawned from the Hacking Team compromise.
Adobe has updated their security advisory with this information and has begun addressing both of these vulnerabilities through updates this coming week.
So, for those keeping score at home, this latest exploit follows this exploit and this exploit.
My recommendation? Pull Adobe Flash from your systems right now as it is clearly not safe to have installed. Take it from me, I did that and my month long experiment showed that I didn’t need it. If you must have it for whatever reason, my suggestion is to use Chrome as at least it is in a sandbox that should keep you safe. Though it’s been suggested that some of the Hacking Team’s exploits could get outside that sandbox. Thus it might be better to avoid it entirely. You’ll be better off if you do.
Like this:
Like Loading...
Related
This entry was posted on July 13, 2015 at 1:37 pm and is filed under Commentary with tags Adobe. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
WOW! Another Flash Exploit Related To The Hacking Team Hack In The Wild!
This is starting to get really, really stupid.
Trend Micro has discovered a third Adobe Flash exploit that’s in the wild thanks to the epic hack of Hacking Team. Here’s what Trend Micro had to say:
Similar to the second Adobe Flash vulnerability discussed on Saturday, we have identified proof of concept (PoC) code; however, it has not yet been seen in active attacks or added to exploit kits like the first Adobe zero-day vulnerability, also spawned from the Hacking Team compromise.
Adobe has updated their security advisory with this information and has begun addressing both of these vulnerabilities through updates this coming week.
So, for those keeping score at home, this latest exploit follows this exploit and this exploit.
My recommendation? Pull Adobe Flash from your systems right now as it is clearly not safe to have installed. Take it from me, I did that and my month long experiment showed that I didn’t need it. If you must have it for whatever reason, my suggestion is to use Chrome as at least it is in a sandbox that should keep you safe. Though it’s been suggested that some of the Hacking Team’s exploits could get outside that sandbox. Thus it might be better to avoid it entirely. You’ll be better off if you do.
Share this:
Like this:
Related
This entry was posted on July 13, 2015 at 1:37 pm and is filed under Commentary with tags Adobe. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.