Hackers exploiting Reader flaw in Windows

[McLovin]

Hackers are exploiting a previously unknown flaw in Reader to attack computers running Windows, Adobe said this week.

Link: Read more.

 

[Jack]

The attacks are targeted against Adobe Reader 9.x.x on Windows so just by updating to the latest version Adobe Reader X (10.1.1) , the users should be safer.........

Because Adobe Reader X Protected Mode and Adobe Acrobat X Protected View would prevent an exploit of this kind from executing, we are currently planning to address this issue in Adobe Reader X and Acrobat X for Windows with the next quarterly security update for Adobe Reader and Acrobat currently scheduled for January 10, 2012

So for not updating to the latest version the users have their share of blame...

I'm sure most of the people will now start bashing Adobe but I do think that Foxit or any other reader would have the same problems if they were targeted/analyzed by cyber criminals like Adobe reader is...........

 

[Jack]

Symantec offers more details about this exploit :

This critical vulnerability has recently been seen exploited in the wild in targeted attack emails sent on November 1st and 5th. This attack leverages the zero-day vulnerability in order to infect target computers with Backdoor.Sykipot.

We have seen Backdoor.Sykipot used in targeted attacks since January, 2010 and this is not the first time it has been used in conjunction with a zero-day exploit.

We detect the malicious PDF document as Trojan.Pidief and the dropped component as Backdoor.Sykipot.

Analysis is ongoing and updates will be provided as more information becomes available.

As always, be vigilant when opening any PDF attachments in unsolicited emails.

Read more

 

[Plexx]

I use Foxit Reader since it is Lighter but I have it always updated the Adobe Reader on my 2nd laptop.