Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Adobe Flash Player update, RSA further notification and Play.com breach - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Adobe Flash Player update, RSA further notification and Play.com breach


Adobe Flash Player update addresses a critical security issue (CVE-2011-0609):

http://www.adobe.com/support/security/bulletins/apsb11-05.html


RSA have released a further list of recommendations to their customers of security best practices via email. No further information on the actual breach.


And finally, the www.play.com, a large on-line retailer, has had a security breach. Some customer names and email addresses may have been compromised from a 3rd part company that handles part of their marketing. Emails notification have been sent out to existing customers.

Thank you to those readers for writing in with these updates.


Chris Mohan --- Internet Storm Center Handler on Duty

 Chris

105 Posts
ISC Handler
Mar 22nd 2011
Thread locked Subscribe Mar 22nd 2011
1 decade ago
Adobe Reader and Acrobat also got updated to address the Flash vulnerability.

http://www.adobe.com/support/security/bulletins/apsb11-06.html
 Anonymous
Quote Mar 22nd 2011
1 decade ago
And Adobe Air gets updated too.

Speaking of Air, can anybody explain to me why it doesn't get its own Bulletin? I think this is the second time its been hidden in a Flash Security Bulletin. It is separate program, with a separate install, but doesn't rate it's own bulletin? I don't understand.

-eddy
 Anonymous
Quote Mar 22nd 2011
1 decade ago

Sign Up for Free or Log In to start participating in the conversation!