Dark Reading

'Steganography' Obsfucation Hides Old PDF Exploits From Antivirus Tools

Security firm EdgeSpot has been looking for PDF file exploits lately. Now, the firm's researchers have found two interesting ones. The first is one that uses the PDF JS API this.getPageNumWords() and ...
PC World

Researchers: Zero-day PDF exploit affects Adobe Reader 11, earlier versions

Researchers from security firm FireEye claim that attackers are actively using a remote code execution exploit that works against the latest versions of Adobe Reader 9, 10 and 11. “Today, we ...
Ars Technica

A glut of iOS 0-days pushes their price below cost of those for Android

For the first time ever, the security exploit broker Zerodium is paying a higher price for zero-day attacks that target Android than it pays for comparable attacks targeting iOS. An updated price list ...