Latest Adobe Flash vulnerability now in Angler, Nuclear EKs

Doug OlenickNovember 2, 2015

Adobe Flash Player once again has become a target as the recently patched zero-day exploit that was discovered and patched has become a part of several exploit kits (EK), Malwarebytes researchers reported.

The company said in a blog post that the Angler and Nuclear EKs now include CVE-2015-7645, which was patched by Adobe on October 16. It affects Flash up to version 19.0.0.207.

Malwarebytes said users should disable or remove the Flash Player in order to completely avoid becoming a victim. But those who choose to keep it should make sure to only use the most recent version and to upload an exploit mitigation tool to remain safe.

Adobe said it is aware that one of the vulnerabilities – CVE-2015-7645, the bug reported by Trend Micro – is being used in “limited, targeted attacks” mainly against national foreign ministry offices.

Doug Olenick

Vulnerability Management

‘MadMxShell’ leverages Google Ads to deploy malware via Windows backdoor

Steve ZurierApril 18, 2024

Security pros say using Windows backdoor in a malvertising campaign could expose companies to other malware attacks.

Network Security

DDoS attacks spike in first quarter

SC StaffApril 17, 2024

Fifty percent more distributed denial-of-service attacks have been launched by threat actors during the first quarter of 2024 over the same period last year, with thwarted DDoS attacks increasing by 93% year-over-year, SiliconAngle reports.

Close up the triple-lens camera on the iPhone 13 Pro Max Seirra Blue and Graphite Color on white background.

Application security

Updated LightSpy spyware targeted at South Asia

SC StaffApril 17, 2024

Security Affairs reports that attacks with an updated iteration of the LightSpy iOS spyware using the "F_Warehouse" framework have been deployed against Southern Asian targets as part of a new cyberespionage campaign.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news