Latest in Gear

Image credit: Getty

Latest Adobe Flash vulnerability allowed hackers to plant malware

A group called BlackOasis used it to breach networks in over a dozen countries.
513 Shares
Share
Tweet
Share
Save

Sponsored Links

Getty

Adobe Flash may be on its way out, but apparently, its goodbye tour is going to be marred by security issues just as the software has for most of its existence. Kaspersky Labs reports that a new Adobe Flash vulnerability was exploited by a group called BlackOasis, which used it to plant malware on computers across a number of countries. Kaspersky says the group appears to be interested in Middle Eastern politics, United Nations officials, opposition activists and journalists, and BlackOasis victims have so far been located in Russia, Iraq, Afghanistan, Nigeria, Libya, Jordan, Tunisia, Saudi Arabia, Iran, the Netherlands, Bahrain, United Kingdom and Angola.

The attack took place on October 10th and the malware planted by BlackOasis is a commercial product called FinSpy or FinFisher, typically sold to governments and law enforcement agencies. Kaspersky notified Adobe of the vulnerability and it has since released a Flash Player security update for Windows, Macintosh, Linux and Chrome OS. Kaspersky said that it believes BlackOasis, which it has been tracking since last year, was behind a similar exploit in September.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
513 Shares
Share
Tweet
Share
Save

Popular on Engadget

The Morning After: PewDiePie is taking a break from YouTube in 2020

The Morning After: PewDiePie is taking a break from YouTube in 2020

View
Researchers bypass airport and payment facial recognition systems using masks

Researchers bypass airport and payment facial recognition systems using masks

View
Visa warns that hackers are scraping card details from gas pumps

Visa warns that hackers are scraping card details from gas pumps

View
Former NASA engineer thwarts porch pirates again with 'Glitter Bomb 2.0'

Former NASA engineer thwarts porch pirates again with 'Glitter Bomb 2.0'

View
Google pauses Chrome update for Android after reports of app data loss

Google pauses Chrome update for Android after reports of app data loss

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr