Adobe scrambles to patch "critical" Flash zero-day flaw under attack
Adobe will take two days to push a critical patch to Flash, which is currently being used to launch attacks by hackers.
The company said in a security advisory on Tuesday that it was "aware" of a report for an exploit in the wild, which the company said hackers could use for "limited, targeted attacks." A successful exploitation of the flaw could let an attacker full access to the affected system, it read.
A patch is expected to land Thursday, leaving millions of machines vulnerable in the meantime. Kaspersky Lab, which was credited with finding the flaw, said in a blog post that it believes an advanced persistent threat (APT), a group dubbed ScarCruft, is behind the attacks.