Alert: Adobe Security Update Email Spam/Phishing Scam

It has come to Adobe’s attention that email messages purporting to be a security directive to Adobe customers have been sent by entities claiming to be Adobe employees. Many of these emails are signed as “James Kitchin” from “Adobe Risk Management” (or similar). In these messages, recipients are directed to download instructions as well as a security update to address “CVE-2010-0193 Denial of Service Vulnerability” (or similar). Please be aware that these emails have not been sent by Adobe or on Adobe’s behalf. Customers should not click on any links, or open or download any attachments contained in any of these emails.
Customers who subscribe to the Adobe Security Notification Service will receive email notifications that ONLY point to security advisories or security bulletins on the adobe.com domain (i.e. http://www.adobe.com/go/apsb10-09), and that NEVER link directly to an executable for a product security update or contain attachments that must be opened. Adobe product updates are only available (1) via the product’s automatic update feature or (2) from the Adobe website at http://www.adobe.com/downloads/updates/.
This posting is provided “AS IS” with no warranties and confers no rights.

Comments are closed.