"Cybercriminals are exploiting the vulnerability by embedding corrupted Flash files in Microsoft Word documents sent as email attachments.
When the targets open the genuine-looking Word document, the hidden Flash file could cause a crash and potentially allow an attacker to take control of the affected system, Adobe explained.
The vulnerability exists in Flash Player 10.2.153.1 and earlier versions for Microsoft Windows, Mac, Linux and Solaris. Android users browsing the Web on their mobile devices are also at risk.
In his Krebs on Security blog, researcher Brian Krebs said that attackers are using the Flash flaw to launch spear phishing campaigns against U.S. government organizations........"
SEE ENTIRE STORY AT LINK...
http://www.securitynewsdaily.com/adobe-flash-security-flaw-used-in-attachment-attacks--0684/
When the targets open the genuine-looking Word document, the hidden Flash file could cause a crash and potentially allow an attacker to take control of the affected system, Adobe explained.
The vulnerability exists in Flash Player 10.2.153.1 and earlier versions for Microsoft Windows, Mac, Linux and Solaris. Android users browsing the Web on their mobile devices are also at risk.
In his Krebs on Security blog, researcher Brian Krebs said that attackers are using the Flash flaw to launch spear phishing campaigns against U.S. government organizations........"
SEE ENTIRE STORY AT LINK...
http://www.securitynewsdaily.com/adobe-flash-security-flaw-used-in-attachment-attacks--0684/