Patch/Configuration Management, Vulnerability Management

Adobe Reader attacks continue two years after patch

Dan KaplanFebruary 24, 2012

JavaScript-based attacks taking advantage of an Adobe Reader and Acrobat vulnerability patched in 2010 are continuing in waves, Symantec researchers said this week. The security bug relates to an invalid TIFF value that corrupts the image file format's parser, senior software engineer Jason Zhang said in a blog post. Symantec said its technology has blocked more than 10,000 malicious PDF file attempts over the past two weeks, with the largest campaign coming on Feb. 16, two years to the date after the flaw was patched. Users are advised to update their Reader and Acrobat software.

Dan Kaplan

Network Security

6.2K Palo Alto firewalls still at risk as exploits increase

Laura FrenchApril 22, 2024

Proof-of-concept exploits for CVE-2024-3400 are now publicly available.

Atlassian releases security advisory for Confluence

Ransomware

Atlassian Confluence Linux instances targeted with Cerber ransomware

Laura FrenchApril 17, 2024

Attackers exploited a critical vulnerability to create a new administrator account.

Update software application and hardware upgrade technology concept, Firmware or Operating System update, Man using computer with comfirm button and percent progress bar screen. Installing app patch.

Application security

Over two dozen Ivanti Avalanche vulnerabilities addressed

SC StaffApril 17, 2024

Security updates have been issued by Ivanti to address 27 issues impacting its Avalanche mobile device management solution, according to BleepingComputer.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Adobe Reader attacks continue two years after patch

Related

6.2K Palo Alto firewalls still at risk as exploits increase

Atlassian Confluence Linux instances targeted with Cerber ransomware

Over two dozen Ivanti Avalanche vulnerabilities addressed

Get daily email updates