Adobe Flash Zero-Day Spreads via Office Docs

The ongoing battle against the exploitation of Adobe Flash continues.  This is but the latest in a long line of flaws and vulnerabilities to plague Flash and its brothers and sisters in the Adobe family of products.  Please review your environments and patch accordingly.  Also, take the time to educate your users to the nature of this particular exploit.

https://www.darkreading.com/threat-intelligence/adobe-flash-zero-day-spreads-via-office-docs/d/d-id/1333429

After WannaCry, EternalRocks digs deeper into the NSA’s exploit toolbox

Here is some new and even scarier motivation to get your patching up to date.  The bad guys are only getting started in their efforts to leverage these exploits.

https://threatpost.com/eternalrocks-worm-spreads-seven-nsa-smb-exploits/125825/

https://nakedsecurity.sophos.com/2017/05/22/after-wannacry-eternalrocks-digs-deeper-into-the-nsas-exploit-toolbox/