Firms using WebEx at risk of poisoned Flash attacks

Companies should check they are running latest version of WebEx, and beware attacks via the road less travelled. A critical vulnerability has been found in Cisco’s WebEx conferencing software – widely used by businesses – that could be exploited by an attacker to spread malware directly to other meeting participants, tricking them into executing it … More Firms using WebEx at risk of poisoned Flash attacks

ESET research: Appearances are deceiving with Turla’s backdoor-laced Flash Player installer

ESET researchers have found that Turla, the notorious state-sponsored cyberespionage group, has added a fresh weapon to its arsenal that is being used in new campaigns targeting embassies and consulates in the post-Soviet states. This new tool attempts to dupe victims into installing malware that is ultimately aimed at siphoning off sensitive information from Turla’s … More ESET research: Appearances are deceiving with Turla’s backdoor-laced Flash Player installer

Adobe Flash Player users should update their software NOW

Written by Graham Cluley, ESET We Live Security One of the favourite pieces of software for malicious hackers to target on users’ computers is Adobe Flash Player. Why? Well, there are a few reasons. Firstly, Adobe Flash Player is on an awful lot of computers. Many users may have it installed it long ago in … More Adobe Flash Player users should update their software NOW

Don’t pay for what is for free: Malicious Adobe Flash Player app found on Google Play

Based on ESET’s notice, Google has removed another malicious app from its official Android app store. It had received 100,000-500,000 downloads since November 2016. Unlike typical downloaders, ransomware and similar nasty stuff, this app – named F11 – did not contain any harmful code. Instead, it relied purely on social engineering, tricking users into paying … More Don’t pay for what is for free: Malicious Adobe Flash Player app found on Google Play

New Android trojan mimics user clicks to download dangerous malware

Android users have been exposed to a new malicious app imitating Adobe Flash Player that serves as a potential entrance for many types of dangerous malware. The application, detected by ESET security software as Android/TrojanDownloader.Agent.JI, tricks its victims into granting it special permissions in the Android accessibility menu and uses these to download and execute … More New Android trojan mimics user clicks to download dangerous malware

Readers of popular websites targeted by stealthy Stegano exploit kit hiding in pixels of malicious ads

Millions of readers who visited popular news websites have been targeted by a series of malicious ads redirecting to an exploit kit exploiting several Flash vulnerabilities. Since at least the beginning of October, users might have encountered ads promoting applications calling themselves “Browser Defence” and “Broxu” using banners similar to the ones below: These advertisement … More Readers of popular websites targeted by stealthy Stegano exploit kit hiding in pixels of malicious ads

Adobe warns of Flash zero-day vulnerability, being actively exploited by online criminals

As I write this, if you’re running Adobe Flash on your Windows, Mac, Linux or Chrome OS computer you’re potentially at risk. Adobe has issued a security advisory, warning of an as-yet unpatched critical security hole in its popular Flash player software that is reported to being actively exploited by criminals in the wild. No … More Adobe warns of Flash zero-day vulnerability, being actively exploited by online criminals