Flash Player

A new ransomware campaign dubbed “Bad Rabbit” has hit a number of high profile targets in Russia and Eastern Europe. First detected on October 24th, 2017, Bad Rabbit was originally detected in Russia and Ukraine, along with a small number of infections reported in parts of eastern Europe, Turkey, and Germany. However, the attack now appears to be spreading to other regions, including reports from South Korea and the US. [Read More]
by RSS FortiGuard SE Team  |  Oct 25, 2017  |  Filed in: Security Research
BankBot is a family of Trojan malware targeting Android devices that surfaced in the second half of 2016. The main goal of this malware is to steal banking credentials from the victim’s device. It usually impersonates flash player updaters, android system tools, or other legitimate applications. Once installed, it hides itself and then tricks the user into typing his or her credentials into fake bank web pages that have been injected onto the device’s screen. [Read More]
by RSS Dario Durando  |  Sep 19, 2017  |  Filed in: Security Research
  [Updated 22 July 2015 to add the CVE information] Fortinet’s FortiGuard Labs has detected a new attack (MD5:db5df99de775af285e7f1b5355a6bee5) that exploits CVE-2015-3077 in Adobe Flash Player. This exploit uses the classic Flash Player Vector corruption technique as shown in the image below.  It then loads the layer 2 Flash to corrupt the vector length after the spray as shown in the image below. A GlowFilter object is created and stored at address 0x974A0C0 which is a memory hole made by the spray code.... [Read More]
by RSS Bin Liu  |  Jul 02, 2015  |  Filed in: Security Research
Today Adobe announced an out-of-cycle emergency patch for their ubiquitous Flash Player software. The patch impacts Windows, Mac OS X and Linux users of Flash Player. Normally when a patch like this is released, it is due to an unpatched vulnerability being actively exploited in the wild and impacting users. Adobe's full bulletin can be read here; it appears that this is a remote code execution vulnerability that would allow an attacker to deliver malware to their target computer. I would encourage all users to update their computers right away,... [Read More]
by RSS Richard Henderson  |  Feb 04, 2014  |  Filed in: Industry Trends
Another Android malware is currently in the wild in France, as we have recently discovered. This malware poses as a Flash Player installer and steals your incoming SMS messages by forwarding them to a remote server. We have named it Android/Fakelash.A!tr.spy. Contrary to many Android malware which are downloaded from underground or legitimate marketplaces (see here, here, here, here... ), this one is propagating via a link in a SMS. For example, the victim below complains he received an SMS from 10052 saying "For proper function of your device,... [Read More]
by RSS Axelle Apvrille  |  Sep 21, 2012  |  Filed in: Security Research
Updates, upgrades and patches, oh my. The week of May 7-11 was indeed a week of major patches from some of the biggest players. The good news is, many of the most popular OSes, Web browsers and applications are now a tad more secure. Here is a look at last week's security news. Patch Tuesday Delivers Three Critical Updates: For its regularly scheduled Patch Tuesday security update, Microsoft released a total of seven bulletins, three designated with the highest severity rating of “critical,” repairing a total of 23 vulnerabilities in Microsoft... [Read More]
by RSS Stefanie Hoffman  |  May 14, 2012  |  Filed in: Industry Trends
Both Microsoft and Adobe delivered their one-two punch that aimed at plugging security holes and halting active exploits dead in their tracks for the month of May. And while the Microsoft and Adobe both addressed critical flaws affecting a wide swath of users, neither bulletin will likely overwhelm users this month. For its May Patch Tuesday security update, Microsoft released a total of seven bulletins, three designated with the highest severity rating of “critical,” repairing a whopping 23 vulnerabilities in Microsoft Windows, Office, Silverlight... [Read More]
by RSS Stefanie Hoffman  |  May 09, 2012  |  Filed in: Industry Trends
Vulnerabilities and more vulnerabilities plagued the security landscape the week of April 30-May 5. Adobe patched a major Flash flaw, while security experts warned of gaping holes in PHP. Meanwhile, it appears that Intel is going to do something with its McAfee purchase after all. Here's a look at this week in security. Adobe Patches Critical Flaw: Adobe released a patch last week for a critical Flash vulnerability pivotal in targeted attacks that exploit a vulnerable version of Flash on Windows running the Internet Explorer Web browser. Altogether,... [Read More]
by RSS Stefanie Hoffman  |  May 08, 2012  |  Filed in: Industry Trends