Adobe patched a critical zero-day vulnerability (CVE-2026-34621) in Acrobat DC, Reader DC, and Acrobat 2024 that allowed remote code execution via malicious PDFs. The vulnerability had been actively exploited for at least four months, with malicious samples first appearing in late November 2025. Security researcher Haifei Li discovered the exploit through his EXPMON malware detection system.
Safety
Adobe fixes PDF zero-day security bug that hackers have exploited for months
Adobe plugs a critical PDF remote-code-execution flaw (CVE-2026-34621) that attackers weaponized for four months before the patch.
Tuesday, April 14, 2026 12:00 PM UTC2 MIN READSOURCE: TechCrunchBY sys://pipeline
Tags
safety
/// RELATED
Infrastructure1d ago
Shadow IT has given way to shadow AI. Enter AI-BOMs
AI-BOMs are emerging as a supply chain transparency standard to inventory AI models, datasets, and frameworks that traditional SBOMs overlook, forcing enterprises to audit and govern unsanctioned AI tools they've already deployed.
PolicyApr 22
ICE Uses Graphite Spyware
U.S. ICE deployed Graphite spyware for surveillance operations, exposing government use of surveillance tools amid civil liberties concerns.