Category: Flash Player

Jun 15 2016

New Flash zero-day exploited in targeted attacks

Symantec customers protected against critical vulnerability (CVE-2016-4171) due to be patched tomorrow.

Apr 06 2016

New Flash zero-day exploited by attackers in the wild

Patch due to be published this week for critical new Adobe Flash vulnerability CVE-2016-1019.

Oct 13 2015

New zero-day exploit hits fully patched Adobe Flash [Updated]

Update on October 14 at 1:15pm PDT: Adobe officials have confirmed this vulnerability affects Flash version, which was released on Tuesday. The vulnerability has been cataloged as CVE-2015-7645. The company expects to release a fix next week.

Attackers are exploiting a previously unknown vulnerability in fully patched versions of Adobe's Flash Player so they can surreptitiously install malware on end users' computers, security researchers warned Tuesday.

So far, the attacks are known to target only government agencies as part of a long-running espionage campaign carried out by a group known as Pawn Storm, researchers from antivirus provider Trend Micro said in a blog post published Tuesday. It's not unusual for such zero-day exploits to be more widely distributed once the initial element of surprise wanes. The critical security flaw is known to reside in Flash versions and and may also affect earlier versions. At this early stage, no other technical details are available. The researchers wrote:

Read 3 remaining paragraphs | Comments

Jun 19 2014

Nico Nico Users Redirected to Fake Flash Player

Some of the video site's users were sent to a Web page that delivers other software.