It begins . . . (PDF spam run)
F-Secure is reporting that a PDF spam run has started that exploits the Adobe URI handler vulnerability (that is really sort of our vulnerability - where Acrobat is simply the current attack vector).
Couple things:
- The Adobe Acrobat update has been released as of October 22nd so make sure you update Acrobat ASAP.
- If you can't update Acrobat - you can enable the workaround they list in their bulletin that I link to above.
I want to give props to Adobe for having the foresight to include the ability to selectively disable features and functionality of the product like that!