Articles about Adobe

adobe

Buggy software in need of patching? Hey, we got that right here – Adobe

Adobe has released a batch of scheduled security fixes to address critical flaws in its Flash Player and ColdFusion products. The company said the updates will tackle a pair of security vulnerabilities in the two platforms which could be exploited remotely by attackers. For Flash Player, the update applies to Windows, Linux and …
Shaun Nichols, 13 Nov 2013
LG Optimus 2X

Android busted for carrying Fake ID: OS doesn't check who really made that 'Adobe' plugin

Google Android allows malware to masquerade as legit, trusted apps thanks to weaknesses in the way the operating system checks digital certificates of authenticity. The flaw, dubbed Fake ID by its discoverers at Bluebox Security, affects all versions of Android from 2.1 (released in 2010) up to Android 4.4. Although Google …
Iain Thomson, 29 Jul 2014
Oracle headquarters

Done with Microsoft and Adobe patches? Good, here's Oracle's load

Oracle is piling on this month's Patch Tuesday with a collection of security fixes for 16 of its enterprise software platforms. Among the massive wad of updates will be a package of 25 bug fixes for Java SE, 22 of which are remotely exploitable without authentication and 12 of which allow an attacker to take complete control of …
Shaun Nichols, 15 Oct 2014
Borked computer keyboard

Adobe users' purloined passwords were PATHETIC

Adobe's security breach just got worse for the company and the world, after a security researcher revealed that 1.9 million of the company's customers us the string “123456” as their password. The researcher in question is Jeremi Gosney of the Stricture Group, whose Twitter profile claims The Reg has in the past labelled him a “ …
Simon Sharwood, 05 Nov 2013
bug on keyboard

Patch Tuesday brings Microsoft fixes and Adobe Shockwave update

Microsoft and Adobe have delivered the February edition of their monthly security updates. The two firms kicked off the second Patch Tuesday of the year by each releasing fixes for critical vulnerabilities that could allow for remote code execution. For Microsoft, the monthly release consists of six bulletins which address a …
Shaun Nichols, 12 Feb 2014

Patch Tuesday: Adobe outdoes Microsoft, swats 18 bugs in latest update

Administrators and end users are being advised to update their systems following a set of Patch Tuesday releases from Microsoft and Adobe, which address more than 30 security flaws combined. Adobe said that its monthly update will include patches for its Flash, Reader, and Acrobat platforms, as well as an update for Illustrator …
Shaun Nichols, 13 May 2014
The Register breaking news

Adobe marketing cloud now to rain spam following Neolane slurp

Adobe has said that it will slurp up digital marketing software firm Neolane into its marketing cloud for $600m in cold, hard cash. Neolane, which operates a software platform for managing digital marketing campaigns across web, email, social and other channels, will be shoved into the Adobe Marketing Cloud, the firm said. The …
The before and after effects promised by Dove's fake Photoshop action

Adobe all smiles as beret bods spaff cash on non-cloud Creative Suite

A late rally from Adobe customers wanting to buy software on a perpetual license before that option closed this month, coupled with a swelling base of cloudy converts, helped boost the developer's coffers in its fiscal second quarter. Adobe turned over $1.07bn in revenues in the three-month period ended 30 May, up from $1.01bn a …
Paul Kunert, 18 Jun 2014

A-D'OH!-BE: Adobe hit by 'sophisticated' MEGA HACK RANSACK

Adobe's systems have been hit by numerous "sophisticated attacks" that have compromised the information of 2.9 million customers, and accessed the source code of Adobe products. The company said on Thursday that it has been the victim of a major cyberattack and said hackers had accessed those millions of customer IDs and …
Jack Clark, 03 Oct 2013
Facebook logo

Facebook makes Adobe fans change their horrible, horrible passwords

Facebook has scanned millions of email address and password pairs hackers dumped online from Adobe's user account database – so that it can force its social networkers to change their passwords if they used the same logins details for both websites. Late last month, Adobe warned of "sophisticated attacks" on its network in which …
Shaun Nichols, 12 Nov 2013

Security holes in Word, the Windows kernel and Adobe Flash. Party like it's Patch Tuesday again

Flaws in Microsoft Word and Office Web Apps that allow hackers to execute malicious code on vulnerable systems have been fixed in Redmond's latest monthly batch of security bug fixes. In addition, two bugs at the kernel level of Windows XP and 7, and Server 2003 and 2008 R2, allow logged-in attackers to escalate their privileges …
Shaun Nichols, 15 Jan 2014

Apple, Google, Intel, Adobe, settle employee-fiddling class action suit

A series of secret pacts among some of the biggest employers in Silicon Valley to cheat their staffers could turn out to be a rather expensive mistake, with Apple, Google, Intel, and Adobe now agreeing to settle the antitrust class-action lawsuit out of court. "This is an excellent resolution of the case that will benefit class …
Iain Thomson, 25 Apr 2014
Disney's Beagle Boys

Three million Adobe accounts hacked? Sorry, make that 38 MILLION

Remember that Adobe security breach earlier this month that leaked the account records of some 3 million customers? Scratch that: the actual number hacked was at least 38 million, it has emerged. In early October, Adobe warned of "sophisticated attacks" on its network in which hackers gained access to data for what was then …
Neil McAllister, 30 Oct 2013
Adobe Photoshop Mix

EXPLICIT PICS: We take you inside Adobe's Creative Cloud update

Adobe has announced a revamp of its Creative Cloud suite, updating 14 core apps and adding new mobile apps and hardware too. Adobe Ink and Slide Adobe Ink and Slide hardware for iPad made in collaboration with Adonit Despite bringing many a creative business to its knees last month with its Adobe ID authentication snafu, the …
Bob Dormon, 18 Jun 2014
Man wrinkles his eyes in an expression of pain, annoyance or dsicomfort

Adobe Creative Cloud 2014: Progress and pain in the usual places

Comment Remember when software product upgrades were a big thing? Balloons, keyrings, parties? Today, they’re slipped under the door furtively like a pizza takeaway price list. And so it is with Adobe’s announcement today of what’s new in Creative Cloud: lots of PR singing by email, but no actual dancing seems to be taking place. When …
Alistair Dabbs, 19 Jun 2014

New Flash vuln exploited (again). Adobe posts emergency fix (again)

Adobe has released an update to address critical flaws in its Flash Player software, one of which is being actively targeted in the wild. The company said that the Windows and Mac OS X builds of Flash Player 12.0.0.44 and earlier, and Flash Player 11.2.202.336 and earlier for Linux, must be upgraded to fix a trio of bugs. Adobe …
Shaun Nichols, 20 Feb 2014
The Register breaking news

Adobe squashes TWO critical Flash vulnerabilities with emergency patches

Adobe published a critical Flash Player update on Tuesday to fix three exploits, two of which are under active attack by hackers. Two of the three vulnerabilities are being used by nefarious folk, Adobe said, and one of these two explicitly targets the Firefox browser. Adobe introduced the Flash Player sandbox a year ago to …
Jack Clark, 27 Feb 2013

Adobe scrambles to revoke stolen cert

Adobe has revealed an attack that compromised some of its software development servers, resulting in its code signing certificate being used to disguise malware as Adobe software. The attackers compromised a build server, Adobe says in this statement, which had “access to the Adobe code signing infrastructure”. The build server …
The Register breaking news

Patch Tuesday deja vu: Adobe patches Flash ... again

Adobe yesterday released a Flash Player update just one week after its patch Tuesday release, providing a bit of extra hassle for admins for the second Tuesday in a row. The latest (APSB12-19) update for Adobe Flash and Adobe AIR addresses six cross-platform flaws in Adobe Flash Player for Windows, Mac OS X, Linux and Android …
John Leyden, 22 Aug 2012
Stella Artois: Queens Tennis Championship. Artwork by stevecaplin.com for The Guardian

(Re)touching on a quarter-century of Adobe Photoshop

Feature Nothing proves the popularity of a star product more than its name being used as a verb. Rival companies hate it, but carpets get Hoovered, wrapping paper gets Sellotaped. And what do you do to a photo? A poorly Photoshopped picture can arouse horror or derision, while a half-decent one can become an internet phenomenon. Think …
Alistair Dabbs, 19 Feb 2015
A storm is brewing (Mali, Sahel). Foto: F. Guichard & L. Kergoat, AMMA project, CNRS copyright.

Adobe's Creative Cloud fails at being a cloud

The file-syncing part of Adobe's new Creative Cloud family of technologies has been intermittently broken for a week, taking the "cloud" part out of Adobe's "Creative Cloud" redesign of its products. Now Adobe is suspending it "for the next couple of weeks" to make updates. The sync feature, which means files being fiddled with …
Jack Clark, 17 May 2013
The Register breaking news

'Better than Adobe' Foxit PDF plugin hit by worse-than-Adobe 0-day

A new security bug in the popular Foxit PDF reader plugin for web browsers allows miscreants to compromise computers and install malware. There's no patch for this zero-day vulnerability. Italian security researcher Andrea Micalizzi discovered that the latest version of the software crashes if users are tricked into clicking on …
John Leyden, 11 Jan 2013
The Register breaking news

Adobe plugs up buffer overflow holes in Shockwave update

Adobe released a patch for its Shockwave Player software on Tuesday, addressing six security vulnerabilities that might easily lend themselves to malware-pushing exploits. Shockwave Player 11.6.7.637 and earlier versions on both Windows and Mac need updating to the latest version: Shockwave Player 11.6.8.638. Adobe said it was …
John Leyden, 24 Oct 2012
The Register breaking news

Adobe investigating attacks on PDFs using zero-day flaw

Vulnerability researchers at FireEye are reporting that Adobe's Reader software has a zero-day flaw that hackers are already exploiting in the wild. FireEye flaw You've been pwned (click to enlarge) The flaw is found in Adobe Reader 9.5.3, 10.1.5, and 11.0.1 and involves sending a specially crafted file to the target. …
Iain Thomson, 14 Feb 2013

Flash deserves to live, says Cisco security man

Don't kill Flash; that's the message from Cisco security veteran John Stewart who says the Adobe team have put in the hard yards into reforming security and needs to weather the current bug storm. The advice follows a call for the ravaged runtime to be expunged from the digital world by former Yahoo-cum-Facebook security man …
Darren Pauli, 31 Jul 2015
Adobe Flash installer

Trouble comes in threes: Yet ANOTHER Flash 0-day vuln patch looming

Adobe plans to patch Flash yet again after yet another zero-day vulnerability in the web video software leaves PCs prone to hijacking. The PSA15-02 security advisory details a security hole that hackers are already exploiting to compromise vulnerable systems. An upcoming update to squash the critical bug makes it three patches …
John Leyden, 02 Feb 2015

Flash HOLED AGAIN TWICE below waterline in fresh Hacking Team reveals

Updated Two more serious Adobe Flash vulnerabilities have emerged from the leaked Hacking Team files, ones which allow malefactors to take over computers remotely – and crooks are apparently already exploiting at least one of them to infect machines. The use-after-free() programming flaws, for which no patches exist, are identified as …
Chris Williams, 12 Jul 2015
The Register breaking news

Adobe punts fix for Reader, Acrobat holes battered by PC, Mac hackers

Adobe has pushed out an emergency security update for its PDF viewing software Reader and Acrobat to plug zero-day vulnerabilities that emerged last week. The cross-platform update, issued yesterday, addresses flaws that were being actively exploited by miscreants to compromise and take over Microsoft Windows and Apple Mac OS X …
John Leyden, 21 Feb 2013

FLASH MUST DIE, says Facebook security chief

Newly-minted Facebook security chief Alex Stamos has called for Adobe Flash to be taken out behind the shed by a shotgun-wielding world. The former Yahoo! security head joined Menlo Park this year and over the weekend said in two Tweets that it is time the death knell chimed for the Adobe's much-hacked tool. "It is time for …
Darren Pauli, 14 Jul 2015
Flash disabled screen grab

Amazon to trash Flash, as browsers walk away

Amazon – the retail juggernaut, not the cloud juggernaut – has flicked Flash ads citing the increasing number of ways they're blocked at the browser as its reason. Driven at least in part by others' reaction to chronic insecurity in the plug-in-platform, Amazon says it will no longer accept advertisements that use Flash after …
The Register breaking news

Adobe Reader 0-day exploit surfaces on underground bazaars

Miscreants have reportedly discovered a zero-day vulnerability in latest version of Adobe Reader. Exploits based on the vulnerability, which circumvents sandbox protection technology incorporated into Adobe X and Adobe XI, are on sale in underground forums. Pricing starts at a hefty $30,000 but the exploit has already made its …
John Leyden, 08 Nov 2012
The Register breaking news

Rid yourself of Adobe: New Firefox 19.0 gets JAVASCRIPT PDF viewer

Mozilla's Firefox web browser now includes a built-in PDF viewer - allowing users to bin plugins from Adobe and other developers. The move to run third-party PDF file readers out of town comes after security holes were discovered in closed-source add-ons from FoxIt and Adobe. The new built-in document viewer is open source, just …
Anna Leach, 20 Feb 2013

Killer ChAraCter HOSES almost all versions of Reader, Windows

Get patching: Google Project Zero hacker Mateusz Jurczyk has dropped 15 remote code execution vulnerabilities, including a single devastating hack against Adobe Reader and Windows he reckons beats all exploit defences. The accomplished offensive security researcher (@j00ru) presented findings at the Recon security conference …
Darren Pauli, 24 Jun 2015

World's worst exploit kit now targeting point-of-sale systems

Trend Micro researcher Anthony Joe Melgarejo says the sophisticated Angler exploit kit popular in cybercrime circles is now targeting point-of-sale (PoS) systems. It appears to be the first time an exploit kit has included PoS in its list of hackable platforms, putting them alongside the likes of Adobe Flash, Reader, Java, and …
Darren Pauli, 31 Jul 2015
The Register breaking news

Adobe spurts spackle* into Flash's gaping holes

Adobe has updated its Flash Player software ahead of schedule to head off crooks exploiting critical vulnerabilities uncovered in the product. The flaws were reported by Google's security team. The cross-platform upgrade includes new builds of Flash for Windows, Mac OS X, Linux and Android-powered smartphones. Adobe AIR on …
John Leyden, 07 Nov 2012
adobe

Users grumble after Adobe cancels Acrobat X Suite

Adobe has cancelled its Acrobat X Suite – launched just 18 months ago - and now recommends its customers acquire a more expensive product. The company has buried slipped a statement about the cancellation of the suite into its FAQ for Acrobat. The suite bundled Adobe Acrobat X Pro, Designer ES2, Photoshop CS5, Adobe Captivate 5 …
Simon Sharwood, 18 Oct 2012

CryptoLocker creeps lure victims with fake Adobe, Microsoft activation codes

Miscreants have brewed up a variant of the infamous CryptoLocker ransomware that uses worm-like features to spread across removable drives. The recently discovered CRILOCK-A variant can spread more easily than previous forms of CryptoLocker. The latest nasty is also notable because it comes under previously unseen guises - such …
John Leyden, 02 Jan 2014
Adobe's Creative Cloud replaces Creative Suite

Adobe CEO admits need to 'tweak' Creative Suite's cloud-only policy

Adobe dropped the D-bomb during a Q2 conference call with analysts after admitting some customers are "disappointed" it decided to murder future copies of its boxed Creative Suite. Clearly top brass at the company were living in er…cloud cuckoo land when they revealed last month that future Creative Suite versions would only be …
Paul Kunert, 19 Jun 2013

Adobe hackers strike again: PR Newswire grovels to clients after latest hack'n'grab

PR Newswire has been forced to reset its clients' passwords following a security breach linked to the same hackers who smashed into Adobe earlier this month. The hackers made off with the usernames and encrypted passwords of the marketing and press release distribution service's customers, reports investigative journalist Brian …
John Leyden, 21 Oct 2013

Google makes it official: Chrome will freeze Flash ads on sight from Sept 1

Google is making good on its promise to strangle Adobe Flash's ability to auto-play in Chrome. The web giant has set September 1, 2015 as the date from which non-important Flash files will be click-to-play in the browser by default – effectively freezing out "many" Flash ads in the process. Netizens can right-click over the …
Shaun Nichols, 28 Aug 2015
adobe

Adobe thinks outside box, nixes retail Creative Suite packaging

Adobe is moving ahead with plans to phase out the boxed, retail versions of its Creative Suite and Acrobat software families, in favor of a distribution model based exclusively on digital downloads and subscriptions. Word that the graphics software maker had set a hard date to stop selling its wares on physical discs first …
Neil McAllister, 13 Mar 2013
The Register breaking news

Adobe muzzles TWO zero-day wild things with emergency Flash patches

Updated Adobe published a critical Flash Player update on Thursday that fixes not just one but two zero-day flaws, both under active attack by hackers. Both Windows and Mac users are in the firing line. One of the vulnerabilities (CVE-2013-0633) is being harnessed in targeted attacks designed to trick marks into opening a Microsoft Word …
John Leyden, 08 Feb 2013
The Register breaking news

Adobe shuts down Connect user forum, confirms passwords raided

Adobe has admitted that its Connectusers.com forum database was compromised, exposing password information about users of its conferencing technology in the process. Potentially exposed passwords were hashed using MD5, but it's not clear whether or not they were salted, an extra security precaution that thwarts brute force …
John Leyden, 15 Nov 2012

Adobe buckles, cuts prices ahead of Australian inquiry

If only we’d all known it would be so easy: in the wake of being summonsed by the Australian parliament’s inquiry into IT pricing, Adobe has cut the price of its Creative Cloud suite to Australian users. The pricing inquiry kicked off last year to look at the practise of geographic price discrimination by international vendors. …

Mozilla loses patience with Flash over Hacking Team, BLOCKS it

Mozilla has temporarily blocked Flash in Firefox while waiting for Adobe to release patches to fix yet more serious security holes in the Swiss-cheese-like plugin. These holes can be exploited by criminals to hijack PCs and infect them with malware; details of the bugs emerged from leaked Hacking Team files. Firefox began …
John Leyden, 14 Jul 2015

KILL FLASH WITH FIRE until a patch comes: Hacking Team exploit is in the wild

So it's confirmed: the Adobe Flash vulnerability revealed in the Hacking Team hack is out in the wild being used, and there's no patch yet. Flash users beware! Two sources, Malwarebytes and Malware Don't Need Coffee, have documented updates to the Neutrino exploit kit and Angler exploit kit, respectively. Both kits, which are …

Adobe exec puffs cloud shop: Online features are so 'compelling'... What are they again?

Creative types who prefer to buy Adobe software in boxed format rather than renting it as-a-service will from this month start to miss out on bumper "compelling" features in Creative Cloud, according to a global partner exec. The problem is, so hot are these new add-ons to the web-based suite that Stephen Snyder, veep of global …
Paul Kunert, 01 Nov 2013

Crims bait phishing hooks with Flash, cast at US Gov agencies

Hackers are attempting to break into US Government agencies using a recently patched Adobe Flash vulnerability, the FBI is warning. The attacks target flaw CVE-2015-5119 revealed and patched earlier this month that can if exploited allow attackers to run malware on victim machines. The agency warned of the attacks which began …
Darren Pauli, 20 Jul 2015
Dunce

Google blames Flash for hobbling Chrome, says it sucks (too much power)

If you reckon Chrome is eating up your laptop's battery, you're not alone. Google is concerned, too, but it says it's not all its fault – Adobe's to blame. Specifically, the culprit is the Adobe Flash plugin that comes built into Chrome and which automatically displays any Flash content it finds on web pages, according to Google …
Neil McAllister, 05 Jun 2015
The Register breaking news

BBC iPlayer downloads BORKED by Adobe Air update

An update to Adobe's Air application has crippled the BBC's iPlayer Desktop software, which is used by telly and radio fans in the UK who want to download programmes to view and listen to offline. A sorrowful Auntie is currently advising its fans to roll back Adobe Air from version 3.5 to version 3.4 in order to get the software …
Kelly Fiveash, 16 Nov 2012