Adobe于4月11日发布补丁，修复了Acrobat和Reader中的零日漏洞CVE-2026-34621。该漏洞影响Windows和macOS平台，可导致任意代码执行。攻击者利用恶意PDF中高度混淆的JavaScript，通过合法API收集系统信息，并可下载二阶段载荷实现远程控制或沙箱逃逸。研究人员发现，此攻击活动最早可追溯至2025年底，部分诱饵文件以俄语书写并涉及油气行业主题，疑为定向攻击。

Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that ...

The Planning Commission last week raised concerns about Act 181, the 2024 overhaul of Vermont’s Act 250 land-use system.

Adobe has released a fix for an Acrobat and Reader zero-day that attackers had been exploiting for months. The patch, shipped on April 11, addresses CVE-2026-34621, a critical vulnerability in Acrobat ...

Researcher Haifei Li, founder of the exploit detection platform EXPMON, discovered a sophisticated attack that uses PDF files to spy on and potentially ...

安全研究员Haifei Li发现，黑客利用Adobe Acrobat Reader中的零日漏洞，通过植入恶意PDF文件对目标进行侦察分析。该漏洞无需用户点击，文件打开即自动触发混淆JavaScript代码，收集系统信息、本地文件及语言设置，并回传至攻击者服务器。攻击者据此筛选高价值目标，对特定系统投递第二阶段载荷，最终可能实现远程代码执行或沙箱逃逸。目前该漏洞尚无CVE编号和补丁，Adobe官方暂 ...

Adobe has issued an emergency update for Acrobat and Reader after confirming that a zero-day vulnerability tracked as CVE-2026-34621 is being exploited in the wild, putting Window ...