We knew before that Adobe was a huge target for hackers, but recent findings show just how bad the programs’ security really is. Out of all Internet exploits and attacks of 2009, 80% have been done by infecting Adobe’s PDF and Flash files.
According to ScanSafe, the California company that carried out this research, vulnerabilities in Adobe Reader and Adobe Acrobat made it the most-exploited software in 2009, growing from 56% in in the first quarter of 2009, to 80% in the fourth quarter of 2009. These finding warn users to try to avoid PDF files and try to switch to other formats until Adobe fixes their security issues.
“I think organizations should avoid Adobe if possible. Adobe security appears to be out of control, and using their products seems to put your organization at risk. Try to minimize your attack surface. Limit the use of Adobe products where you can,” says Stephen Northcutt, president of the SANS Technology Institute.
The best way to combat this problem is to make sure your computer’s security software is up to date and to be careful when opening attachments in the form of PDFs without knowing exactly who they’re coming from.