Feedly:TrendLabs Security Intelligence Blog. Latest Flash Exploit Used in Pawn Storm Circumvents Mitigation Techniques

from TrendLabs Security Intelligence Blog

Our analysis of the Adobe Flash zero-day vulnerability used in the latest Pawn Storm campaign reveals that the previous mitigation techniques introduced by Adobe were not enough to secure the platform. Used in Pawn Storm to target certain foreign affairs ministries, the vulnerability identified as CVE-2015-7645 represents a significant change in tactics from previous exploits. It is...