You need to know about this serious online security threat. We recently told you about an emergency security patch for Adobe Flash that dealt with a zero-day vulnerability. That means hackers found the security weakness before Adobe did.
While Adobe has since sent out fixes for it, hackers have weaponized it. They're using the hole to trick you out of your money and your identity with ransomware, banking malware and a trojan that steals your online banking logins and passwords.
This threat has been found so far in three exploit kits, which use security holes to spread malware. They're Neutrino, Magnitude and Angler.
The cybersecurity expert who discovered these exploits says they're being used to infect your computer with ransomware like CryptXXX and DMA Locker, plus the Gootkit Trojan, which steals your online banking credentials.
As of this morning, most antivirus programs were not able to detect Neutrino. Note: Keep reading for important information to stay safe.
The Magnitude exploit is so far not working correctly. That's good for you. However, hackers are trying to exploit Adobe Flash and will almost certainly fix it.
Meantime, Angler is spreading the Dridex banking trojan that hackers have used to drain at least $30 million from bank accounts and credit union accounts.
This is scary. Dridex is usually spread in Microsoft Office documents and is passed along in emails. (Note: Do you know how to spot phishing email scams?)
Here's what you need to do:
- If you don't need it, uninstall Adobe Flash Player. To do that on Windows 10, for instance: Start >> Settings >> search for Uninstall >> click on Add or Remove Programs >> highlight Adobe Flash Player >> Uninstall.
- For older versions of Windows: Start >> Control Panel >> (under Programs) Uninstall a program >> highlight Adobe Flash Player >> click Uninstall.
- If you need to use Adobe Flash Player, update your version right now. Click here to get the newest version of Adobe Flash.