Adobe said that the malware is being propagated through social networking sites by way of spam comments advertising fake news stories.
On following the link, the user is taken to a page that attempts to copy either Reuters or CNN video sites. The user is then presented with a pop-up window informing them that their currently-installed copy of Flash cannot play the video.
The user is then asked to download an executable file labelled 'get_flash_update', according to security firm Sunbelt Software.
Adobe is advising users to only download the player from their site. The company also notes the authenticity of the Flash installer can be tested by looking for a digital certificate on launching the installer or checking the properties window on the executable file.
The attack is the latest spin on the popular 'fake codec' social engineering tactic.
Malware writers will often attempt to lure in new victims with the promise of video files. When the user attempts to view the supposed movie, a message pops up asking the user to download a trojan disguised as a video codec.
.png&h=140&w=231&c=1&s=0)
.png&h=140&w=231&c=1&s=0)
.png&w=120&c=1&s=0)
EDUtech AU
.png&w=120&c=1&s=0)
Security Exhibition & Conference 2025
Integrate Expo 2025
Digital As Usual Cybersecurity Roadshow: Brisbane edition
iTnews Benchmark Security Awards 2025
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
