Earlier this week, I told you about the ironic hack of an Italian government-employed spy group called Hacking Team. Now the hackers who broke into Hacking Team's systems are using some of the information they stole to create an Adobe Flash "spear phishing" attack on those who haven't installed Adobe's recent security patch.
The attack will arrive in your email's inbox and poses itself as the real Adobe patch but it's actually the hackers trying to sneak into your computer's hard drive. Don't click on any of the links - if you do, your system will be comprised and you could have information like your IP address, passwords and bank information stolen.
Adobe Flash is used on both Mac and PC platforms, so this flaw has the potential to affect millions of desktop users. The email that the hackers send out looks like the image below, and it tells people to install the patch and restart their computers. Don't do this! You can get the real patch here.
You just need to head over to the Adobe Security Bulletin page listed above and install the updated version of the vulnerable Adobe software for your specific operating system. The different options are listed in an easy-to-understand chart so you can quickly select the version you need for your computer.
Follow the instructions from Adobe itself, not the instructions listed in the email. You don't want to be the next victim of the hacker's malicious plot.
I'll keep you updated if I hear any more about this. And if you think you've been targeted by this Adobe Flash spear-phishing attack, share your story in the comments section below.