Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Adobe Flash Player update, RSA further notification and breach - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Adobe Flash Player update, RSA further notification and breach

Adobe Flash Player update addresses a critical security issue (CVE-2011-0609):

RSA have released a further list of recommendations to their customers of security best practices via email. No further information on the actual breach.

And finally, the, a large on-line retailer, has had a security breach. Some customer names and email addresses may have been compromised from a 3rd part company that handles part of their marketing. Emails notification have been sent out to existing customers.

Thank you to those readers for writing in with these updates.

Chris Mohan --- Internet Storm Center Handler on Duty


105 Posts
ISC Handler
Mar 22nd 2011
Adobe Reader and Acrobat also got updated to address the Flash vulnerability.
And Adobe Air gets updated too.

Speaking of Air, can anybody explain to me why it doesn't get its own Bulletin? I think this is the second time its been hidden in a Flash Security Bulletin. It is separate program, with a separate install, but doesn't rate it's own bulletin? I don't understand.


Sign Up for Free or Log In to start participating in the conversation!