• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Security   »   New “Zero-day” in Adobe Flash: What You Need to Know

New “Zero-day” in Adobe Flash: What You Need to Know

  • Posted on:January 22, 2015
  • Posted in:Security
  • Posted by:Christopher Budd (Global Threat Communications)
10

This morning, we learned of a new problem affecting Adobe’s Flash product. This is a serious situation that affects nearly everyone using Microsoft Windows. Because of that, here’s what you need to know and, most importantly, what you should do about it.

What’s the problem?

The problem is that there’s a newly discovered vulnerability affecting Adobe’s Flash product on Microsoft Windows. This vulnerability or flaw can be used by attackers to run code or programs on your Windows computer as if you ran it. Anything you can do on your computer the attacker’s program can do. In a worst case like this, they can load malware on your computer.

Vulnerabilities are found all the time. But usually vulnerabilities are fixed with a patch when they’re found, before attackers can target them. As long as you keep your system up-to-date, you’re protected against most vulnerabilities. What makes this situation serious is that researchers, including our TrendLabs researchers, have discovered that attackers found this vulnerability first and have been attacking it before a patch is available: this kind of situation is called a “zero-day” situation, because defenders have “zero days” to protect against attacks. This means even if you keep your system up-to-date, you’re still at risk of attack until Adobe releases a patch.

What makes this situation more serious is that the attacks we’ve seen are using banner ads (called “malvertisements”) to spread malware. This means that you can go to trusted sites you expect to be safe and still get malware on your system. These attacks work by attackers targeting and compromising the third-party ad servers that offer the ads you see on legitimate and popular sites. This is a particularly nasty form of attack, one that puts average users at great risk.

The situation is even more serious because this vulnerability is being used by what we call an “exploit kit”: a tool that cyber-criminals make and sell to other cyber-criminals so they can carry out attacks. An exploit kit spreads attacks much more widely. This particular vulnerability is being used in the “Angler” exploit kit.

Taken all together, this means that this is a vulnerability that can be widely attacked. It’s a potentially very serious situation that everyone running Microsoft Windows should be aware of.

What should I do about it?

We say the two most important things you can do to protect your system when you’re online is:

  • Keep your system and programs up-to-date
  • Run a mature, full-featured security package

In this case, because it’s a zero-day situation, step #1 won’t protect you. We’re still waiting for a patch from Adobe for this.

But step #2 can protect you. As of now, Trend Micro customers running Trend Micro™ Security, Worry-Free™ Business Security, OfficeScan™, Deep Discovery, Deep Security and the Smart Protection Suites are protected against current attacks using this vulnerability.

When Adobe does release a patch, you should apply it to your systems as soon as possible.

Right now, there’s no indication that attackers are targeting Adobe Flash on other platforms like the Mac or Android. If you use these platforms, though, you should make sure you’re running security software and apply any patches from Adobe as soon as possible.

UPDATE: Adobe has a patch for this and you should apply this as soon as possible now.

Please add your thoughts in the comments below or follow me on Twitter; @ChristopherBudd.

Related posts:

  1. Adobe confirms Flash vulnerability in Windows 8
  2. New Adobe Flash Critical Vulnerability Exploited in the Wild.
  3. Hacking Team Adobe Flash Zero-Day
  4. Pawn Storm Targets Adobe Flash, Uses Russian Actions in Syria as Lure

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • Cloud-based Email Threats Capitalized on Chaos of COVID-19
  • Detected Cyber Threats Rose 20% to Exceed 62.6 Billion in 2020
  • Trend Micro Recognized on CRN Security 100 List
  • Trend Micro Reports Solid Results for Q4 and Fiscal Year 2020
  • Connected Cars Technology Vulnerable to Cyber Attacks
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.