Today a new Adobe Flash and Adobe Reader exploit became public knowledge. It's actively being exploited, and we could all be targets.
Adobe has announced that an exploitable flaw in Adobe Reader 9.x, Acrobat 9.x, and Flash 9.x and 10.x has been discovered and is being actively exploited. Windows, Mac OS X, and Linux versions are all affected. The flaw allows arbitrary code execution by attackers, and hence it is deemed "critical."
The article linked provides some details on how to protect yourself. But in summary, there is no current fix from Adobe. Downgrading to Reader 8.x can save you there, and apparently updating to the latest 10.1 beta of flash can help, but that seems scary in it's own right.
If you don't have an authenticator already, we'd recommend getting one. Pick your flavor:
- Physical Device (US Version)
- They have an iPhone app for that.
- Available on the Android Marketplace
- Download for some US cellphones
Be safe guys.