Hacking Team Adobe Flash Zero-Day Exploited By Money-Hungry Criminals - Forbes

Hacking Team Adobe Flash Zero-Day Exploited By Money-Hungry Criminals

1 Share
In recent years, crypto luminary Bruce Schneier has noted that today’s surveillance tools are tomorrow’s cybercriminal playthings. Hacking Team has offered proof of that, as one of its zero-days – unpatched and previously-unknown software vulnerabilities – is being exploited by crooks.

The Adobe Flash zero-day uncovered in the trove of 415GB data leaked by the Hacking Team hacker has been packaged into “exploit kits”. Such kits sold for as much as $15,000 and used to launch attack code on web users’ PCs or phones as they peruse the internet. Two of the most popular kits, Angler and Neutrino, have adopted the Flash flaw. Anyone who visits a site or opens a file in which the exploit kits are hidden risks being infected with malware and having their data stolen, as Adobe has not yet provided a patch.
The software giant said it was aware of the issue, affecting Flash across Windows, Macintosh and Linux, noting that “successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system”. It expects to fix the issue today, according to an advisory
Researchers from security company Trend Micro said the CryptoWall 3.0 ransomware, which locks victims’ computers and demands money to relinquish control of the machine, was being spread by the Angler kit Adobe exploit. Independent researcher Kafeine said the addition of the exploit into criminal caches took just a ”matter of hours”.
Hacking Team was particularly proud of its Flash flaw, claiming in the ‘readme’ file for the vulnerability it was “the most beautiful Flash bug for the last four years”. But the Computer Emergency Response Team (CERT) at Carnegie Mellon’s Software Engineering Institute didn’t give it a 10 out of 10 vulnerability rating, instead giving it a moderate-to-severe rating of 7.5.
Adobe Flash exploit Hacking Team
Hacking Team was particularly proud of its Adobe Flash exploit
The CERT recommended users disable Flash in their browser or enable Click-to-Play features so exploits can’t be launched without user interaction.
The Adobe vulnerability is thus far the only confirmed zero-day from the Hacking Team files, though Google researcher Tavis Ormandy found an exploit for anti-virus software from ESET. Ormandy recently detailed his discovery of a zero-day in ESET, which was subsequently fixed by the firm.
Hacking Team ESET exploit
Google researcher Tavis Ormandy finds possible ESET anti-virus exploit in Hacking Team files.
Other files indicated Hacking Team was trying to find ways of exploiting most commonly-used operating systems, including Windows, Linux, Mac OS X, iOS and Android. In particular, the Italian government contractor appeared to be trying out backdoors in the Newsstand application for iOS and attacks on a large range of Android phones, including Samsung Galaxy and Google Nexus devices.
Unlike many other vulnerability hunters, Hacking Team doesn’t disclose its findings to the vendors, leaving it open to criticism that it is failing to help protect users of popular software, even though it has the knowledge and the power to help.
Read the whole story
 
· · ·

FBI’s Amazing Trick to Avoid Accountability

Comments

Popular posts from this blog

New questions arise about House Democratic caucus’s loyalty to Obama | » Democrats Stymie Obama on Trade 12/06/15 22:13 from WSJ.com: World News - World News Review

Немецкий историк: Запад был наивен, надеясь, что Россия станет партнёром - Военное обозрение

8:45 AM 11/9/2017 - Putin Is Hoping He And Trump Can Patch Things Up At Meeting In Vietnam

Review: ‘The Great War of Our Time’ by Michael Morell with Bill Harlow | FBI File Shows Whitney Houston Blackmailed Over Lesbian Affair | Schiff, King call on Obama to be aggressive in cyberwar, after purported China hacking | The Iraqi Army No Longer Exists | Hacking Linked to China Exposes Millions of U.S. Workers | Was China Behind the Latest Hack Attack? I Don’t Think So - U.S. National Security and Military News Review - Cyberwarfare, Cybercrimes and Cybersecurity - News Review

10:37 AM 11/2/2017 - RECENT POSTS: Russian propagandists sought to influence LGBT voters with a "Buff Bernie" ad

3:49 AM 11/7/2017 - Recent Posts

» Suddenly, Russia Is Confident No Longer - NPR 20/12/14 11:55 from Mike Nova's Shared Newslinks | Russia invites North Korean leader to Moscow for May visit - Reuters | Belarus Refuses to Trade With Russia in Roubles - Newsweek | F.B.I. Evidence Is Often Mishandled, an Internal Inquiry Finds - NYT | Ukraine crisis: Russia defies fresh Western sanctions - BBC News | Website Critical Of Uzbek Government Ceases Operation | North Korea calls for joint inquiry into Sony Pictures hacking case | Turkey's Erdogan 'closely following' legal case against rival cleric | Dozens arrested in Milwaukee police violence protest