Adobe Flash 0day: North Korea behind the exploit being released

Last week, CERT of South Korea recognized a exploit in Adobe Flash 28.0.0.137 (and in all previous versions of course) that could allow remote code execution on Windows, macOS, Linux, and Chrome OS.Adobe Flash

Adobe immediately announced in a bulletin that it will patch the vulnerability in the release scheduled for release this week. ...on time, only that the exploit is released...

Cisco's Talos researchers have stated that the payload that existed in an Excel was ROKRAT and refers to Group 123.

"Group 123 has joined some hacking elites in this latest ROKRAT payload.
They have used a Zero Day of Adobe Flash that was των προηγούμενων δυνατοτήτων τους – χρησιμοποίησαν in previous campaigns but never had a purely new exploit like they have now,” Talos researchers Warren Mercer and Paul Rascagneres report.

“Although we have no information on casualties on Talos, we suspect that the victim was a very specific and high value target. Using a brand new exploit that didn't exist shows that they were very determined to succeed . "

FireEye, on the other hand, said the malware file should come from North Korea, known as TEMP.Reaper.

While Adobe suggests that administrators could use Protected for για να προστατευτούν, ενώ η FireEye τόνισε ότι είναι πολύ πιθανό να δούμε περισσότερες until the vulnerability is patched.

Last July, Adobe announced that it would stop supporting Flash in 2020, with to claim that it will completely remove Flash support from Windows the same year.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).