Tue, 15 Dec 2009 Adobe warns of Reader, Acrobat attack in the wild
The flaw has been used in limited attacks since Friday
Adobe is investigating new reports that hackers are attacking a previously unknown bug in the latest version of the company's Reader and Acrobat software.
"This afternoon, Adobe received reports of a vulnerability in Adobe Reader and Acrobat 9.2 and earlier versions being exploited in the wild," Adobe wrote in a post to its Product Security Incident Response Team (PSIRT) blog on Monday afternoon.
"We are currently investigating this issue and assessing the risk to our customers."
Adobe had few details on the reported problem. "As soon as we have additional details, we will update the PSIRT blog," a spokeswoman said in an e-mail message.
Adobe learned of the attack on Monday, said Brad Arkin, Adobe's director of product security and privacy. "Three different partners in the security community shared samples of the same attack with us within a few minutes of each other this afternoon," he said via instant message.
The criminals are exploiting this flaw by sending malicious PDF files to victims, according to the volunteer-run malware tracking group Shadowserver.
Adobe 0-day vulnerability
"This is legit and is very bad," Shadowserver said said in a post to its Web site late Monday. Shadowserver could not be reached immediately for comment.
Shadowserver said that several "tests have confirmed this is a 0-day vulnerability affecting several versions of Adobe Acrobat [Reader] to include the most recent versions of 8.x and 9.x. We have not tested on 7.x, but it may also be vulnerable."
The vulnerability is due to a bug in the way Reader processes JavaScript code, according to Shadowserver. The group recommends that concerned users disable JavaScript within Adobe's software as a work-around for this problem. (This can be done by un-checking the "Enable Acrobat JavaScript" in the Edit -> Preferences -> JavaScript window)
Security experts say that running malicious JavaScript code within Reader has become a favorite hacking technique this year.
The attack has been used by cybercriminals since at least Friday, but has not seen any widespread use, Shadowserver said. "Expect the exploit to become more wide spread in the next few weeks and unfortunately potentially become fully public within the same timeframe."
Most antivirus products do not yet detect the attack, Shadowserver noted.
With Reader and Acrobat installed on most of the world's PCs, the products have become an increasingly attractive target for computer hackers who take advantage of flaws in the system to run unauthorized programs on victims' PCs.
Contact Us
DiggEmail A Friend
Email this article to a friend or colleague:
PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.
Permalink This Article
This articles permalink is:
http://www.macworld.co.uk/digitallifestyle/news/index.cfm?RSS&NewsID=28041
Latest News
- Apple sets March 27 deadline for first iPad apps
- Microsoft pulls Bing app from UK and other non-US App Stores
- Apple to release 27in LED Cinema Display and Dodeca-Core Mac Pro
- Apps are a Goldmine for Developers
- iPad Expected to Beat iPhone's First 3-Month Sales
- Apple's iGroups patent to bring social networking to the iPhone?
- Apple Mac OS X 10.6.3 Snow Leopard update approaching
- iPad pre-orders at 10,000 a day
- Macworld April issue - on sale now
- Facebook won't overtake Google in UK
- Apple UK asks agencies to bid for £10m search work
- Logic Pro, Express updated to 9.1.1
Macworld Mobile
MACWORLD
FOR MOBILE
Related News
- Illegal downloads could cost Europe £215 billion by 2015
- The case for the 3G-capable iPad
- O2 says net piracy letters 'bully' web users
- Web users at risk of social networking addiction
- Facebook users targeted in massive spam run
- Google, Facebook poor at protecting privacy, says FTC commissioner
- ABC rule change opens door to iPad mags
- Amazon brings Kindle app to the Mac
- Facebook overtakes Google for first time
- How to Know if Your iPhone Battery is on Death Row
Mac Broadband?
Search news
Search Google
Newsletter signup
It's easy and free to get the latest news headlines, reviews and opinions straight to your email inbox. Sign up NOW to make sure you receive the latest Mac news, reviews and tutorials on your favourite topics.
Macworld reader poll
Are you planning to get any of the accessories with the iPad?:
Have your say in the
Macworld forums!
Register now
Stay on top of the latest, breaking Mac news and chat with other Mac professionals and enthusiasts about the issues that matter to you. Register with Macworld today to join our forums and receive our twice-weekly email newsletter, Macworld Mainline.
RSS
Have the latest content delivered to your desktop via RSS. Use the links below to get access to a specific blog, news, or reviews feed.
MACWORLD MARKETPLACE
 |
Computer & Laptop |
 |
Macworld 2010 Best of Show - Quickoffice is Your Mobile Office. Connected. |
 |
Same Day Mac Repairs |
 |
Things – task management has never been this easy |
 |
Trading4u |
 |
Beat the Credit Crunch - Lease your Mac from Hardsoft |
 |
Latest Version of Final Cut Studio and Final Cut Server now available - Special Offer !! |
 |
Circus Ponies NoteBook - the easy way to get organized on the Mac |
Click here for the latest reader comments