Earlier this morning, Adobe announced a new version of its PDF editing software, Acrobat X. A quick look on the Adobe Reader Blog reveals that a new version of Adobe Reader is scheduled to follow next month, bringing with it enhanced security.
The post says Adobe Reader X will include a new "Protected Mode" feature that will hopefully help keep malware at bay. Adobe provides more details on its Secure Software Engineering Team Blog:
With Adobe Reader Protected Mode enabled (it will be by default), all operations required by Adobe Reader to display the PDF file to the user are run in a very restricted manner inside a confined environment, the “sandbox.” Should Adobe Reader need to perform an action that is not permitted in the sandboxed environment, such as writing to the user’s temporary folder or launching an attachment inside a PDF file using an external application (e.g. Microsoft Word), those requests are funneled through a “broker process,” which has a strict set of policies for what is allowed and disallowed to prevent access to dangerous functionality.
That functionality almost seems overdue, considering the sheer number of PDF-borne malware we've seen in recent years. In fact, ZDNet reported earlier this year that Adobe Reader has eclipsed Microsoft Word, Excel, and PowerPoint as a target for attacks.
|1. Ryszard - $503||2. punkUser - $502||3. the - $306|
|4. SomeOtherGeek - $300||5. Ryu Connor - $250||6. doubtful500 - $200|
|7. Anonymous Gerbil - $150||8. cygnus1 - $126||9. danny e. - $125|
|10. SecretSquirrel - $125|
|Star Wars Battlefront trailer will leave your jaw on the desk||117|
|This week produced a bumper crop of security holes, patches||17|
|Two men have real-life flame war over iOS, Android||59|
|Report: DOJ may oppose Comcast's Time Warner acquisition||38|
|Deal of the week: A terabyte-class SSD for $300, plus more||33|
|This is my favorite fanless NUC chassis so far||29|
|AMD posts $180 million loss, shutters SeaMicro business||249|
|Razer's BlackWidow Chroma spawns a tenkeyless variant||18|