Adobe expected to issue Flash Player patch for Hacking Team 0-day

Adobe is expected to issue a patch for a vulnerability its Flash Player today to address a zero-day that was included in the Hacking Team data dump. In the meantime, @SwiftOnSecurity sounded the alarm last night with instructions how to protect yourself:

TRANSLATION: Worst-case scenario is now in play – HT Flash 0day with NO patch is now being used to deliver Cryptolockers via exploit kits

— InfoSec Taylor (@SwiftOnSecurity) July 8, 2015

TRANSLATION: This means you can get a Cryptolocker/virus just by browsing the web with a fully-patched machine RIGHT NOW. Take action above. — InfoSec Taylor (@SwiftOnSecurity) July 8, 2015

[!] ACTION REQUIRED: Set Flash as Click to Play in all your browsers. Here’s easy all-in-one guide via @howtogeek | http://t.co/8IMLeW09nx

— InfoSec Taylor (@SwiftOnSecurity) July 8, 2015

PowerSchool commits to strengthened breach measures following engagement with the Privacy Commissioner of Canada
Hungarian police arrest suspect in cyberattacks on independent media
British institutions to be banned from paying ransoms to Russian hackers
Data breach feared after cyberattack on AMEOS hospitals in Germany
Global hack on Microsoft product hits U.S., state agencies, researchers say
Inquiry launched after identities of SAS soldiers leaked in fresh data breach

Related: