Adobe is working on a new piece of software that would act like a Photoshop for audio, according to Adobe developer, who spoke at the Adobe MAX conference in San Diego, California. The software is codenamed Project VoCo, and it’s not clear at this time when it will materialize as a commercial product.
The standout feature is the ability to add words not originally found in the audio file. An Adobe representative confirmed the project’s existence, clarifying that it was shown off as part of a sneak-peek program at the MAX conference. The project is currently in development as part of a collaboration between members of Adobe Research and Princeton University.Read more
The latest zero-day vulnerability in Adobe Systems' Flash player has been used over the past two weeks to distribute ransomware called Cerber, email security vendor Proofpoint said. The vulnerability affects all versions of Flash Player on Windows, Mac, Linux and Chrome OS.
Ryan Kalember, senior vice president of cybersecurity at Proofpoint, said his company detected an attack trying to exploit the flaw. One of Proofpoint's customers received an email with a document that contained a malicious macro that led victims through a series of redirects that eventually reached an exploit kit.Read more
The mob is turning against Flash. Mozilla has blocked every version of Adobe’s Flash plugin from running within its Firefox browser, while Facebook’s head of security has called for Adobe to kill it off.
The moves come following a series of vulnerabilities in Flash being actively exploited, including those exposed by the Hacking Team compromise. Firefox users seeking to view Flash-based content, such as videos, adverts or more complex web tools for uploading images and other actions, will need to click again and accept a warning that “Flash is known to be vulnerable. Use with caution”. That means users of Firefox cannot use Flash by default.Read more
Spyware company Hacking Team was compromised earlier this week, leading to 400GB of internal and files, source code, and emails being made available on torrent sites for anyone to download.
While there’s some embarrassing communications contained within the leak, some serious software flaws have also been discovered. Some source code contained within the leak includes software vulnerabilities that are being exploited by Hacking Team to break into PCs. Two unpatched vulnerabilities have been discovered, affecting Adobe’s Flash software and Microsoft’s Windows operating system.Read more
Two exploit kits have been outfitted with the exploit for a Flash Player vulnerability that has been patched only a week ago, the researcher that goes by the handle Kafeine has shared on Tuesday. The integer overflow vulnerability in question can allow attackers to execute arbitrary code via unspecified vectors, and is deemed critical.
Initial information about it has been shared with Adobe via HP's Zero Day Initiative. Researchers are admittedly worried about the short period of time that passed between is patching and the exploit surfacing in the Fiesta and Angler exploit kits. As Kafeine notes, it's technically possible that the exploit was included in the kits even before the patch was available.Read more
YouTube has become a daily habit for millions all over the world, but it looks like there has been some malicious activity on the website -- which may have affected more than 100,000 users over a 30 day period.
According to Trend Micro, they have been monitoring the activity on YouTube over the past couple of months and have found that the attack comes in the form of ads that are present on the site. While the ads themselves have no malicious content, the issue seems to occur when the ad is clicked. Although these ads should be monitored and screened by YouTube, some have seemed to slip through the cracks, redirecting to malicious websites that could cause infections.Read more
Adobe is the latest company to admit they’re spying “collecting information from the user” via one of their products: Adobe Digital Editions 4, the company’s latest version of the widely popular ebook platform.
Adobe is said to be gathering extensive data about its users’ ebook reading habits including how long the book has been read for, what percentage of the book has been read and more. All the data including the book’s title, publisher and metadata is being sent through to Adobe’s servers in non-encrypted format. What’s even creepier is that Adobe also seems to be tracking individual users’ computers by gathering metadata from all ebooks stored on a hard drive and uploading the data onto Adobe’s servers.Read more