Adobe Works on Patch; Attackers Work on Users

Tuesday, December 13, 2011 @ 03:12 PM gHale

As users await a patch for a flaw in Adobe Acrobat and Reader, attackers are going to town in an effort to exploit the high-profile zero day.

One attack arrives as an unsolicited financial report claiming to be from Barclay’s Capital, according to security firm Sophos.

Flash Zero Day Times Two
Adobe Woes Bring Malware Offerings
Adobe Hit with Zero Day
Attackers Clean Out Duqu Servers

The attached PDF file launches the Reader and Acrobat attack, and specially crafted code within the file targets the vulnerability and attempts to download malware-serving Trojans.

“We have started seeing a small number of targeted samples in Sophos Labs of attackers trying to use this vulnerability in email attachments. The emails are well crafted and look very believable,” said Sophos Senior Security Advisor Chester Wisniewski.

Adobe has been working to address the flaw with an out-of-cycle security fix scheduled to arrive some time in the coming week.

Leave a Reply

You must be logged in to post a comment.