The Hacker News

Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025

Adobe Reader zero-day exploited since Dec 2025 via malicious PDFs, enabling data theft and potential RCE, prompting urgent ...

Months-old Adobe Reader zero-day uses PDFs to size up targets

Hackers have been quietly exploiting what appears to be a zero-day in Adobe Acrobat Reader for months, using booby-trapped PDFs to profile targets and decide who's worth fully compromising.
Macworld

Adobe confirms PDF zero-day, urges users to kill JavaScript

Adobe acknowledged that all versions of its popular PDF software, including editions for Windows, the Mac and Linux, contain at least one, and possibly two, critical vulnerabilities. “All currently ...
CSO Online

Hackers have been exploiting an unpatched Adobe Reader vulnerability for months

Now a security researcher says a Reader hole has been quietly exploited by malware for as long as four months, fingerprinting ...
Computerworld

Kill JavaScript in Adobe Reader to ward off zero-day exploit, experts urge

Users should disable JavaScript in Adobe’s Reader and Acrobat tools to protect themselves until a patch for a just-disclosed vulnerability is available, security experts said today. The advice is ...
eWeek

Adobe Fixes Bugs, Adds JavaScript Whitelisting to Reader, Acrobat

Hundreds of thousands of Grok chatbot chats, including sensitive data, were exposed on Google after xAI’s share feature leaked them. AI is rapidly moving beyond creating static videos to generating ...
TweakTown

Adobe admits JavaScript flaw in Acrobat

I talked about the flaw that allowed Vista to fall in the Pwn2Own competition this year very briefly but I never did get into much detail. But since Adobe has admitted the flaw exists in another Adobe ...
Computing

Analysis: Why is Adobe Acrobat so insecure?

Acrobat used to be a simple application that replicated paper documents, but Adobe's efforts to update it have made it more insecure Another day, another Adobe Acrobat security flaw. Or so it ...