Media coverage this week has suggested that Adobe software may have been a vector used in the recent attacks against Adobe and other companies. We are continuing our investigation into the incident, but to date, none of the work done by Adobe or any third party has uncovered evidence to indicate that Adobe technology was an attack vector. In fact, McAfee just posted an entry on the incident to their Security Insights Blog reinforcing this point.
This incident demonstrates the increased sophistication in today’s malware design and attack strategies. It also serves as a reminder of the importance of multiple layers of security and the need to follow security best practices as the best possible defense against those with malicious intent.