Hackers exploit Adobe Reader flaw via comic strip syndicate
Hackers broke into an online comic strip syndication service Thursday, embedding malicious code that sought to exploit a newly discovered security flaw in Adobe Reader and Acrobat, Security Fix has learned.
On Monday, Adobe Systems Inc. said it was investigating reports that criminals were attacking Internet users via a previously unknown security flaw in its Adobe Reader and Acrobat software. Experts warned that the flaw could be used to foist software on unsuspecting users who visit a hacked or booby-trapped Web site.
Albany, N.Y.-based Hearst publication Timesunion.com now reports that on Thursday readers of its comics section began complaining of being prompted to download malicious software. In an update posted to its site, Timesunion.com said the attack took advantage of the recently disclosed Adobe flaw. The news outlet said it had traced the attack back to a problem at King Features, which serves comics on its Web site, and that King Features had since corrected the problem.
Rose Croke, brand development manager for King Features, said the malicious code was somehow injected into the company's Web server that handles content for its Comics Kingdom clients. Croke said the Comics Kingdom content is syndicated by roughly 50 different news sites, including Timesunion.com.
"We're working on finding the source of the injection," Croke said.
Adobe said it does not plan to issue a software update to fix the flaw until Jan. 12, 2010.
Alternatively, Internet users may want to consider uninstalling Adobe Reader in favor of another free PDF reader program, such as Foxit Reader.
December 18, 2009; 3:45 PM ET
Categories: Latest Warnings , Safety Tips , Web Fraud 2.0
Save & Share: Previous: Twitter.com hijacked by 'Iranian cyber army'
Next: Farewell 2009, and The Washington Post
Posted by: JkR- | December 18, 2009 4:21 PM | Report abuse
Posted by: observer31 | December 19, 2009 10:22 AM | Report abuse
Posted by: wallasongs | December 19, 2009 12:37 PM | Report abuse
Posted by: kadenmor | December 21, 2009 2:07 PM | Report abuse
Posted by: jake3_14 | December 23, 2009 12:13 AM | Report abuse
Posted by: firstname.lastname@example.org | December 23, 2009 9:40 PM | Report abuse
The comments to this entry are closed.