South Korea Spots Adobe Flash Zero-Day Attack Made By North Korea

Internet & Security Agency of South Korea – KISA has announced an alert attack for a zero-day vulnerability in Adobe Flash Player. The attack has been reported to exploit by North Korean hackers. But KISA has provided few details related to this attack and further says that the vulnerability affects Adobe Flash Player 28.0.0.137 and earlier version 28.0.0.137 is the latest released news by the company, Adobe itself in end of January as part of the Patch Tuesday updates.

According to the report published on Wednesday, the security hole can be oppressed by receiving a user to open any document, any web page or an email comprising a particularly crafted Flash format file. A spokesman from South Korea-based Cybersecurity firm, Hauri, Simon Choi tweeted in his message that North Korea had exploited the Adobe Flash Player zero-day since mid-November 2017 in attacks targeted at South Korean persons who were focusing their research on North Korea.

The expert had determined that the current flaw has been influenced to issue malware. A posted screenshot seems to show that the abuse has been conveyed via harmful Microsoft Excel files. Different agencies approached to Adobe Flash for company’s comment but nothing more was stated. Since the last happenings of the North Korean attacks, the cyberpunks have been strictly observed by numerous security firms. It is also possible that Adobe Flash has already been made conscious of the zero-day and is functioning on the said patch.

Image Source

Adobe states a report that as an alert on exploit for a susceptibility it trails as CVE-2018-4878 occurs in the wild, and is being employed in partial, targeted threats against Windows users. The company further states it will describe the flaw with an update scheduled for the week of February 5. Adobe cleared the vulnerability is a severe use-after-free that permits distant code execution in a recommendation. The company has delivered some mitigations until a fix becomes available.

“Beginning with Flash Player 27, administrators have the ability to change Flash Player’s behavior when running on Internet Explorer on Windows 7 and below by prompting the user before playing SWF content,” Adobe said. “Administrators may also consider implementing Protected View for Office. Protected View opens a file marked as potentially unsafe in Read-only mode.”

Leave a Reply

Your email address will not be published. Required fields are marked *