{"id":70544,"date":"2013-02-14T12:45:58","date_gmt":"2013-02-14T10:45:58","guid":{"rendered":"http:\/\/mybroadband.co.za\/news\/?p=70544"},"modified":"2013-02-14T13:05:51","modified_gmt":"2013-02-14T11:05:51","slug":"adobe-reader-acrobat-security-risk-investigated","status":"publish","type":"post","link":"https:\/\/mybroadband.co.za\/news\/software\/70544-adobe-reader-acrobat-security-risk-investigated.html","title":{"rendered":"Adobe Reader, Acrobat security risk investigated"},"content":{"rendered":"<p><a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2Fer%2Fcompany%2Fralg-oa%2F4295905431&amp;display=%22Adobe%20Systems%20Inc%22\">Adobe Systems Inc<\/a> is investigating a report by a cybersecurity firm that hackers exploited previously unknown bugs in its Reader and <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F18c45bec-620d-361c-a049-d903e5f75c15&amp;display=%22Acrobat%22\">Acrobat<\/a> software to launch sophisticated attacks on personal computers.<\/p>\n<p><a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2Fcomphash-1%2Fe55ae23e-cf43-3586-93c3-c658e46c6188&amp;display=%22FireEye%22\">FireEye<\/a>, a Silicon Valley company that helps businesses fight cyber attacks, told Reuters it obtained so-called <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F23045255-8c46-366f-b5fc-02f504477e20&amp;display=%22PDF%22\">PDF<\/a> files tainted with malicious software, which can take advantage of the newly discovered bugs.<\/p>\n<p>It declined to identify any victims of the attacks.<\/p>\n<p>A spokeswoman for Adobe said that the company is investigating the report, which surfaced late on Tuesday. She declined to elaborate.<\/p>\n<p>This has been a busy year so far for Adobe&#8217;s security team. In January, the company pushed out security updates to fix vulnerabilities in Reader, <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F18c45bec-620d-361c-a049-d903e5f75c15&amp;display=%22Acrobat%22\">Acrobat<\/a> and <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2Fe8dd5ecd-f9fc-3445-bce3-57d2da2867e5&amp;display=%22Flash%22\">Flash<\/a>, as well as a program known as ColdFusion that is used to build websites.<\/p>\n<p>Last week, it rushed out a fix for <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2Fe8dd5ecd-f9fc-3445-bce3-57d2da2867e5&amp;display=%22Flash%22\">Flash<\/a> Player after security software maker Kaspersky Lab identified a critical bug that enabled hackers to install &#8220;back doors&#8221; and take control of PCs running on Microsoft Corp&#8217;s <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F82b42d17-cc4e-3910-942a-cbfddff47f19&amp;display=%22Windows%20operating%20system%22\">Windows operating system<\/a> or Apple Inc&#8217;s Mac OS X.<\/p>\n<p>Adobe&#8217;s software has long been a popular target for hackers, who attack PCs by finding bugs in widely used programs that they can then exploit to insert viruses on computers. Experts estimate that Reader and <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F18c45bec-620d-361c-a049-d903e5f75c15&amp;display=%22Acrobat%22\">Acrobat<\/a> programs for accessing <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F23045255-8c46-366f-b5fc-02f504477e20&amp;display=%22PDF%22\">PDF<\/a> documents and <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2Fe8dd5ecd-f9fc-3445-bce3-57d2da2867e5&amp;display=%22Flash%22\">Flash<\/a> Player for accessing Internet content are installed on more than 1 billion PCs.<\/p>\n<p>Hackers exploiting the most recently discovered vulnerability use <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F23045255-8c46-366f-b5fc-02f504477e20&amp;display=%22PDF%22\">PDF<\/a> files to infect PCs, according to <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2Fcomphash-1%2Fe55ae23e-cf43-3586-93c3-c658e46c6188&amp;display=%22FireEye%22\">FireEye<\/a>.<\/p>\n<p>When the victim opens the <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F23045255-8c46-366f-b5fc-02f504477e20&amp;display=%22PDF%22\">PDF<\/a>, a visa application form appears onscreen, and a virus installs a covert communications channel with a remote computer known as a &#8220;command and control&#8221; server, which hackers use to control infected PCs, said <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2Fpershash-1%2Fcfd7ba73-4bda-36e4-90f9-2b2054b1aeaa&amp;display=%22Zheng%20Bu%22\">Zheng Bu<\/a>, senior director of research at <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2Fcomphash-1%2Fe55ae23e-cf43-3586-93c3-c658e46c6188&amp;display=%22FireEye%22\">FireEye<\/a>.<\/p>\n<p>He said the virus also installs a third malicious file on the infected computer, but declined to elaborate.<\/p>\n<p>Adobe has yet to provide advice on how to protect PCs against attack. <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2Fcomphash-1%2Fe55ae23e-cf43-3586-93c3-c658e46c6188&amp;display=%22FireEye%22\">FireEye<\/a> said computer users should avoid opening unfamiliar PDFs, especially when coming from unknown sources.<\/p>\n<p><a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2Fcomphash-1%2Fe55ae23e-cf43-3586-93c3-c658e46c6188&amp;display=%22FireEye%22\">FireEye<\/a> said on its blog it has observed attacks on PCs running Adobe Reader 11, the most-recent version of the software, as well as Reader 9 and Reader 10.<\/p>\n<p>Adobe said on its own security blog that the issue also affected <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F18c45bec-620d-361c-a049-d903e5f75c15&amp;display=%22Acrobat%22\">Acrobat<\/a> XI, the current version of the software used to create <a id=\"\/controller\/search.action?type=entity&amp;entityId=http%3A%2F%2Fd.opencalais.com%2FgenericHasher-1%2F23045255-8c46-366f-b5fc-02f504477e20&amp;display=%22PDF%22\">PDF<\/a> documents.<\/p>\n<p>(Reporting By Jim Finkle; Editing by Bernard Orr)<\/p>\n<h3 class=\"my-4\">More Adobe news<\/h3>\n<p><strong><a title=\"Permanent Link to Apple, Microsoft, Adobe to explain high prices to Aussie parliament\" href=\"http:\/\/mybroadband.co.za\/news\/business\/70312-apple-microsoft-adobe-must-explain-high-prices-to-aussie-parliament.html\" rel=\"bookmark\">Apple, Microsoft, Adobe to explain high prices to Aussie parliament<\/a><\/strong><\/p>\n<p><strong><a title=\"Permanent Link to Firefox to block Java, Silverlight, Adobe Reader\" href=\"http:\/\/mybroadband.co.za\/news\/software\/69822-firefox-to-block-java-silverlight-adobe-reader.html\" rel=\"bookmark\">Firefox to block Java, Silverlight, Adobe Reader<\/a><\/strong><\/p>\n<p><strong><a title=\"Permanent Link to Adobe releases Game Developers Tools\" href=\"http:\/\/mybroadband.co.za\/news\/general\/66168-adobe-releases-game-development-tools.html\" rel=\"bookmark\">Adobe releases Game Developers Tools<\/a><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Adobe is investigating reports that hackers exploited previously unknown bugs in its Reader and Acrobat software<\/p>\n","protected":false},"author":340871,"featured_media":70552,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[36,2556,18198,18200],"class_list":["post-70544","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-software","tag-active","tag-adobe","tag-adobe-acrobat","tag-adobe-reader"],"_links":{"self":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/70544"}],"collection":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/users\/340871"}],"replies":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/comments?post=70544"}],"version-history":[{"count":1,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/70544\/revisions"}],"predecessor-version":[{"id":70554,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/posts\/70544\/revisions\/70554"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media\/70552"}],"wp:attachment":[{"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/media?parent=70544"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/categories?post=70544"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mybroadband.co.za\/news\/wp-json\/wp\/v2\/tags?post=70544"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}