Cyber criminals are exploiting zero days. (Duncan Alfreds, Fin24)
Cape Town - Adobe has been hit with a second zero day exploit in as many months and hackers are taking full advantage.
Security firm Trend Micro have announced the discovery of the zero day, dubbed CVE-2015-0313, being used in a 'malvertisement' attack.
Zero days are flaws in software for which no patch yet exists. These are highly prized by hackers as it gives them a window to exploit vulnerable machines while the developer works to release a patch.
Adobe software has been particularly vulnerable to exploits in recent times.
In the case of a zero day being exploited, even the traditional advice of keeping your system up to date becomes irrelevant because no fix is available for the vulnerability.
With Adobe software in particular, the situation for computer users is more dangerous because the software is critical to web experiences like online games and video.
Trend Micro has advised that users avoid using any software that requires Adobe Flash Player until the situation is resolved.
The company said that hackers are exploiting the software with "malvertising". You may visit a legitimate website and find your system infected with malware.
"Malvertising does not impact a single website, but rather an entire advertising network. It allows for malware to be easily spread across a large number of legitimate websites without directly compromising the sites," Trend Micro said.
- Follow Duncan on Twitter