January 8, 2019
Via: Security WeekAdobe’s Patch Tuesday security updates for January 2019 address only two “important” vulnerabilities in the company’s Connect and Digital Editions products. The latest version of the Adobe Connect web conferencing software patches CVE-2018-19718, a session token exposure issue that can […]
October 2, 2018
Via: Threat PostThe update includes a security bypass bug that enables privilege escalation. Adobe on Monday posted its regularly-scheduled October security update addressing 86 vulnerabilities – more than half of which were critical flaws – in Adobe Acrobat and Reader, its set […]
August 22, 2018
Via: Security WeekAdobe late on Tuesday released updates for the Windows and macOS versions of Photoshop CC to address two critical remote code execution vulnerabilities. The flaws impact Photoshop CC 2018 version 19.1.5 and earlier 19.x versions, and Photoshop CC 2017 18.1.5 […]
April 11, 2018
Via: Threat PostAdobe fixed four critical vulnerabilities in its Flash Player and InDesign products as part of its regularly scheduled April Security Bulletin Tuesday morning. In all, Adobe released 19 patches for products including Adobe Experience Manager, Adobe InDesign CC, Adobe Digital […]
Malware, Virus & Malware, Vulnerabilities
February 27, 2018
Via: Security WeekEndpoint security firm Morphisec has spotted a massive campaign that exploits a recently patched Adobe Flash Player vulnerability to deliver malware. The flaw in question, CVE-2018-4878, is a use-after-free bug that Adobe patched on February 6, following reports that North […]
February 7, 2018
Via: Security WeekAdobe updated Flash Player on Tuesday to address a zero-day vulnerability exploited by what experts believe to be a North Korean hacker group in attacks aimed at individuals in South Korea. The existence of the vulnerability, tracked as CVE-2018-4878, came […]
November 15, 2017
Via: Threat PostAdobe kicked off today’s Patch Tuesday barrage with a monster update for Acrobat and Reader patching dozens of remote code execution vulnerabilities, along with the near-customary Flash Player update addressing a handful of critical flaws. None of the vulnerabilities patched […]
September 25, 2017
Via: Security WeekAdobe’s product security incident response team (PSIRT) accidentally published a private PGP key on its blog. The compromised key was quickly revoked and a new key was generated after the incident came to light. Adobe PSIRT updated its PGP key […]
August 9, 2017
Via: Security AffairsAdobe released security updates for its Flash Player, Reader, Acrobat, Digital Editions and Experience Manager products. The company addressed more than 80 vulnerabilities. Adobe has updated Flash Player to version 26.0.0.151 on all platform, this release addresses only two vulnerabilities, a serious security […]
July 12, 2017
Via: Threat PostAdobe fixed six vulnerabilities in two products, one of the company’s smallest security bulletins in recent memory, as part of its regularly scheduled round of updates on Tuesday. Included are fixes for the company’s Flash Player software platform, including a critical vulnerability […]
April 12, 2017
Via: Threat PostAdobe patched 59 vulnerabilities in five different products, including Flash Player, Acrobat/Reader, Photoshop, Adobe Campaign, and its Adobe Creative Cloud App as part of its regularly scheduled software update today. The company warned in a series of security bulletins posted shortly before […]
March 15, 2017
Via: Threat PostAdobe on Tuesday patched seven vulnerabilities in Flash Player, six that could lead to code execution. The company said it isn’t aware of any of the vulnerabilities being exploited in the wild but is still encouraging users to update Flash for […]
January 11, 2017
Via: Security WeekAdobe informed users on Tuesday that updates released for Acrobat, Reader and Flash Player patch a total of 42 vulnerabilities, including many that could lead to arbitrary code execution. The updates for Acrobat and Reader versions 11 and 15 address […]
January 9, 2017
Via: TrendMicro BlogCyber-criminals by and large don’t work to annual schedules. But as a new year rolls around again, there’s a valuable opportunity for organizations to take stock of their IT security posture and consider where the key threats lie over the […]
December 20, 2016
Via: WiredBy now it’s hard to keep track of which companies have been hacked and which haven’t. Remember the FourSquare hack? What about Adobe? Even breaches that were high-profile at the time are fading into obscurity as bigger and scarier ones […]
November 18, 2016
Via: Symantec ConnectA newly discovered zero-day vulnerability in Adobe Flash Player is being exploited by attackers in the wild. Adobe released a Security Bulletin (APSB16-36) yesterday which patches the vulnerability (CVE-2016-7855). The critical vulnerability affects Adobe Flash Player 23.0.0.185 and earlier versions […]
November 9, 2016
Via: CSO OnlineAdobe Systems has released scheduled security patches for its widely used Flash Player software as well as the Adobe Connect web conferencing platform, which is popular in enterprise environments. The Flash Player security updates fix nine critical vulnerabilities that could […]
October 12, 2016
Via: TrendMicro BlogAdobe released three updates for October. The first update covers 12 CVEs in Flash – two of which were submitted through the ZDI program. While the update is marked is critical, there’s no indication any of these bugs are being […]
May 18, 2016
Via: InfoSecurity LiveAdobe Systems has released a security update for Flash Player in order to fix a publicly known vulnerability, as well as 24 privately reported security flaws. The company issued a warning about the zero-day previously unknown and unpatched . The […]
April 11, 2016
Via: CSO OnlineAdobe Systems released a security update for Flash Player to fix 24 critical vulnerabilities, including one that hackers have been exploiting to infect computers with ransomware over the past week. The company advised users Thursday to upgrade to the newly […]