Amidst the rising cyber security issues, another cyber threat is on the rise with Adobe. As reported by CERT ( Indian Computer Emergency Response Team) some of the Adobe features can pose a threat. The report says that some of them are prone to cyber scams. Let’s have a look at what might be at risk!
Adobe can pose a threat
So, which are the products that are in the red zone? The affected Adobe products include Adobe FrameMaker, Substance, InDesign, InCopy, Lightroom, Adobe Animate, and Adobe Commerce.The government warned users that these softwares can be hacked . This will eventually help hackers to get access to your data secretly. Moreover you can land up in scams such as identity theft, email phishing and money laundering , among others.
The CERT team has further specified the models of the Adobe products at risk. This includes the following:
- Adobe FrameMaker: The 2020 Release Update 6 and the older version. Also, the 2022 Release Update 4 and older (Windows)
- Adobe InCopy: The older and current 19.4 version. Additionally, the 18.5.3 and older versions (Windows and macOS)
- Adobe InDesign: The ID19.4 and previous versions. The ID18.5.3 and older (Windows and macOS)
- Adobe Animate: 2023 23.0.7 and earlier. Also, the 2024 24.0.4 and earlier (Windows and macOS)
- Lightroom: 7.4.1 and earlier along with the Lightroom Classic 13.5 and earlier
Additionally, the different versions of Adobe commerce including the 2.4.7-p2 and older are also at risk. This is applicable across different Open Source and B2B editions.
But what are the technical loopholes that the above mentioned versions have? CERT highlighted that there can be out-of-bounds reads, integer overflow errors, and improper authentication and authorization mechanism integer overflow errors, out-of-bounds reads and improper authentication and authorization mechanism. These allow hackers to install malware codes, read arbitrary files, bypass strong security measures and even result in memory leak.
The safety road ahead
So, how to stay safe? It is advisable that you avoid installing /using the above mentioned versions of the affected products. In addition to that you can follow the safety structures:
- You can update the existing versions. Try to keep a regular check on your security reports and take safety precautions accordingly.
- Backup your import files regularly.
- Use high-quality antivirus software. This can help you detect any form of threat at an early stage.
- For more security, you can also consult the Adobe Security Bulletin for specific updates relevant to their software versions.
Follow FE Tech Bytes on Twitter, Instagram, LinkedIn, Facebook
