Computer software designer Adobe has confirmed that cybercriminals are exploiting yet another unpatched vulnerability in its Reader program that enables hackers to infect unknowing users, reports the Register.
The security gap exists in Adobe's document viewer for all three major platforms – Windows, OS X and Unix. Cybercriminals are taking advantage of the vulnerability to install a trojan known as Wisp, which can steal sensitive user data and installs a backdoor that can lead to subsequent infections.
Contagio Malware Dump researcher Mila Parkour reports that infected PDF files are currently in circulation and they unload two malicious binaries – nsunday.exe and nsunday.dll – into Window users that open the document. Parkour didn’t specify whether older versions of the operating system are more susceptible to the exploit.
Adobe has confirmed it will seal the security gap during the first two weeks of November.
Many computer users utilize Adobe's Reader program to open PDF files. The PDF file type enables users to share documents created by various word processors without losing program-specific formating options.
