“Adobe has published another security advisory after the discovery of a ‘critical vulnerability’ in Adobe Flash Player 10.2.152.33 and earlier versions across all major platforms including Windows, Macintosh, Linux, Solaris and Android mobile devices,” Electronista reports.
“According to Adobe, the Zero-Day exploit is being deployed in the wild in ‘targeted attacks’ through a Flash (.swf) file embedded in a Microsoft Excel file delivered as an email attachment,” Electronista reports. “Adobe reports that it is ‘finalizing a fix for the issue,’ but does not expect to have the hole patched until the ‘week of March 21.'”
Electronista reports, “Adobe explains that the exploit can cause a system crash followed by the attacker taking control of compromised systems remotely. In the meantime, users should exercise extreme caution when receiving emails with any type of Flash file embedded within it.”
Read more in the full article here.
MacDailyNews Take: What is this antiquated, walking dead, insecure, Mossberg-fetishized “Adobe Flash” of which Electronista speaks?
(Mac users, use care with any emails containing embedded Adobe Flash files.)
MacDailyNews Note: Note to advertisers: Your Flash-based ads are no longer reaching the most well-heeled customers online: iPhone, iPad, and iPod touch users. If you care about reaching people with discretionary income, you might want to consider dumping your flash-based ads and moving to a more open format that people with money and the will to spend it can actually see.