Adobe patches a critical PDF flaw exploited for months, allowing attackers to bypass sandbox protections and deliver malware.

Adobe于4月11日发布补丁，修复了Acrobat和Reader中的零日漏洞CVE-2026-34621。该漏洞影响Windows和macOS平台，可导致任意代码执行。攻击者利用恶意PDF中高度混淆的JavaScript，通过合法API收集系统信息，并可下载二阶段载荷实现远程控制或沙箱逃逸。研究人员发现，此攻击活动最早可追溯至2025年底，部分诱饵文件以俄语书写并涉及油气行业主题，疑为定向攻击。

Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that ...

Adobe has released a fix for an Acrobat and Reader zero-day that attackers had been exploiting for months. The patch, shipped on April 11, addresses CVE-2026-34621, a critical vulnerability in Acrobat ...

Researcher Haifei Li, founder of the exploit detection platform EXPMON, discovered a sophisticated attack that uses PDF files to spy on and potentially ...

安全研究员Haifei Li发现，黑客利用Adobe Acrobat Reader中的零日漏洞，通过植入恶意PDF文件对目标进行侦察分析。该漏洞无需用户点击，文件打开即自动触发混淆JavaScript代码，收集系统信息、本地文件及语言设置，并回传至攻击者服务器。攻击者据此筛选高价值目标，对特定系统投递第二阶段载荷，最终可能实现远程代码执行或沙箱逃逸。目前该漏洞尚无CVE编号和补丁，Adobe官方暂 ...

Adobe patches CVE-2026-34621 after active exploitation since Dec 2025, preventing remote code execution via malicious PDFs.

Kyle Pitts, starting tight end of the Atlanta Falcons, was the surprise guest at the spring break camp of the McCleskey-East Cobb Family YMCA this week. He stopped by on Wednesday not only to visit ...

Adobe Acrobat and Reader users are under attack from hackers using a zero-day vulnerability. Update within 72 hours, Adobe ...

A critical security vulnerability in Adobe Reader is being actively exploited by cybercriminals through a sophisticated and evolving ...

Hackers have been exploiting an Adobe Reader zero-day vulnerability since December 2025; PDF users are warned.