Adobe Flash

Adobe Issues Emergency Patch For Flash Zero-Day Under Attack

This in from Trend Micro

Adobe Issues Emergency Patch For Flash Zero-Day Under Attack

Adobe released an out-of-band security update on Monday to address multiple vulnerabilities rated as critical in its Flash Player, including one (CVE-2015-8651) that is currently being exploited in targeted attacks.

The software maker said the vulnerabilities affect all platforms and could allow an attacker to take control of an affected system.

Attackers sling recent Flash Zero Day vulnerability through 1800 domains

This in from Trend Micro:

"Attackers sling recent Flash Zero-Day Attacks through 1800 domains Nuke it from orbit.

Some 1800 subdomains have been found slinging the Angler exploit kit using Adobe's most recent Flash zero day exploit, Cisco researcher Nick Biasini says.

The lion's share of nasty subdomains were set up on 28 and 29 January and tied to about 50 GoDaddy registrant accounts.

Biasini said the malvertising attacks used several layers of subdomains to avoid detection.