What is currently the number one target for hackers? According to Computerworld, it’s Adobe products. Adobe Flash player and Adobe Reader are the specific targets of choice.
According to Finnish antivirus company F-Secure, 61% of all targeted attacks — ones purposefully aimed at specific individuals or businesses to break into company networks — in the first two months of 2010 exploited a bug in Reader. Rival security firm McAfee, meanwhile, estimated that 28% of all exploit-carrying malware in the first quarter of this year leveraged a Reader vulnerability.
When Brad Arkin, Adobe’s Director for Product Security was asked about this, he said, “We’re in the security spotlight right now, There’s no denying that the security community is really focused on ubiquitous third-party products like ours. We’re cross-platform, on all these different kinds of devices, so yes, we’re in the spotlight.”
Adobe is working on closing these holes and focusing on writing more secure code. Also, Adobe appreciates the fact that the security community is helping out by reporting zero day vulnerabilities. “We’re thrilled when someone shares [vulnerability] information with us responsibly. That’s one less potential vulnerability that could be used by the bad guys.”, Arkin said.
Hackers usually go after the most popular programs, so they can attack a large number of machines. This is why Microsoft and now Adobe are prime targets. Microsoft has changed its focus to being more security conscious and it looks like Adobe is following suit. Just like Microsoft updates, it is important to keep your Adobe products updated. Also, If you are using an old version of Reader or Flash Player, it would be a good idea to upgrade to the latest version. Both are available for free on Adobe’s website.