Ladies and Gentlemen, update your PDF readers..

Adobe Acrobat PDF folder
Last month we warned you about a critical zero-day vulnerability in the ubiquitous Adobe PDF Reader that was being exploited by hackers to infect computers.

The risk is that hackers could craft a malformed PDF file that could trigger the vulnerability, allowing them to open a backdoor and run malware on your computer. Using this technique it would be simple cor cybercriminals to spam out a PDF file that would infect your PC, or plant malicious PDF content on a website.

There was concern at the time the vulnerability was discovered that Adobe said they would not be rolling out a patch until March 11th, as we had already seen the exploit being used.

So, it’s with some relief that we can now confirm that Adobe has issued an update which reportedly fixes the vulnerability. Windows and Apple Mac users can read more and download Adobe Reader 9.1 from Adobe’s website. I strongly recommend that if you use Adobe Acrobat Read that you download this update as soon as possible.

Sign up to our free newsletter.
Security news, advice, and tips.

The only fly in the ointment is that Unix users have not had their version of Reader updated by Adobe. According to the firm, they may have to wait until March 25th.

Foxit Reader
One other thing to note is that Adobe’s software is not the only PDF-reading solution that requires a security update.

Some internet users decided some time ago to use the PDF reading alternative FoxIt Reader, claiming that it is speedier, requires less of a memory footprint and obviously isn’t necessarily vulnerable to the same exploits as Adobe’s product.

However, in a useful reminder to us all that every piece of software needs to be kept up-to-date with security patches, FoxIt Software has announced that its product has also been updated to fix a number of security vulnerabilities. Read more and download an up-to-date version of FoxIt Reader from their website.

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.