Adobe Patches Actively Exploited Zero-Day That Lingered for Months

Summary

Adobe has released a patch for a zero-day vulnerability in Acrobat and Reader that attackers have been actively exploiting through malicious PDF files for at least four months. The flaw allowed remote code execution via crafted PDFs, making it a critical threat to widespread users. The extended exploitation window before disclosure highlights the challenge of detecting sophisticated zero-day abuse in the wild.

Indicators of Compromise

• malware — Malicious PDF exploits

Entities