The huge cache of files recently leaked from Italian surveillance software maker Hacking Team is the gift that keeps on giving for attackers. Researchers sifting through the data found a new exploit for a previously unknown vulnerability in Adobe’s Flash Player.

This is the second Flash Player zero-day exploit discovered among the files and the third overall—researchers also found a zero-day exploit for a vulnerability in Windows.

A zero-day exploit is a previously unknown vulnerability for which a patch does not exist.

The first Flash Player exploit was identified Tuesday, less than two days after a hacker dumped on the Internet over 400GB worth of files, email communications, business documents, source code and other internal data from the Milan-based company that sells computer surveillance and intrusion tools to government agencies around the world.

The exploit was quickly adopted by cybercriminals and was integrated into commercial exploit kits before Adobe released a patch for it. Exploit kits are malicious tools used in large-scale attacks launched through compromised websites or malicious advertisements.

Read the Full Article: Source – PC World
Browsing Privacy: (PC World) – Second Flash Player zero-day exploit found in Hacking Team’s data

source not found