{"id":31712,"date":"2019-11-07T21:28:05","date_gmt":"2019-11-07T21:28:05","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/"},"modified":"2019-11-07T21:28:05","modified_gmt":"2019-11-07T21:28:05","slug":"this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/","title":{"rendered":"This may shock you but Adobe is shipping insecure software. No, it&#8217;s not Flash this time. Nope, not Acrobat, either"},"content":{"rendered":"<p>It has been revealed that Adobe&#8217;s Experience Platform mobile SDKs, used to create apps that interact with the company&#8217;s cloud services, until recently contained sample configuration files that created insecure default settings.<\/p>\n<p>Developers creating apps that utilize those files as templates or examples could find that their apps have been sending data over the network without SSL protection, making it vulnerable to interception and alteration.<\/p>\n<p>On Wednesday, security biz Nightwatch Cybersecurity disclosed the flaws, with Adobe&#8217;s blessing, after the Photoshop-slinger <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/github.com\/Adobe-Marketing-Cloud\/acp-sdks\">published updated SDKs<\/a> that fix the issue. Nightwatch initially reported the vulnerability to Adobe in March.<\/p>\n<p>The problems arise from a configuration file for the SDKs called <code>ADBMobileConfig.json<\/code> that gets packaged with the mobile application.<\/p>\n<h3 class=\"crosshead\"><span>&#8216;Sensitive data&#8217;<\/span><\/h3>\n<p>&#8220;There are several insecure settings included within this file which may lead to sensitive data being transmitted without SSL and can be seen or modified by an attacker with access to the network traffic,&#8221; explained Nightwatch security researcher Yakov Shafranovich in a <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/wwws.nightwatchcybersecurity.com\/2019\/11\/06\/insecure-defaults-in-adobes-mobile-sdks\/\">blog post<\/a>.<\/p>\n<p>There&#8217;s an SSL setting in the <code>analytics<\/code> object of the <code>.json<\/code> file that defaults to false. There&#8217;s an SSL setting in the <code>mediaHeartbeat<\/code> object that defaults to false. And there are also configurable URLs that may incorrectly reference insecure HTTP URLs but don&#8217;t usually do so.<\/p>\n<p>Experienced developers might craft their own configuration files, avoiding the problem, but Adobe explicitly recommends copying the flawed file into projects. Its BlackBerry 10 SDK, for example, <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/github.com\/Adobe-Marketing-Cloud\/mobile-services\/tree\/master\/sdks\/BB10\">advises<\/a>, &#8220;In the ADBMobile-4.0.0-BlackBerry folder, there is a <code>.json<\/code> config file named <code>ADBMobileConfig.json<\/code>. Copy that file into the root of your project.&#8221;<\/p>\n<div class=\"promo_article\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2015\/08\/12\/flash_7656756345.jpg?x=174&amp;y=115&amp;crop=1\" width=\"174\" height=\"115\" alt=\"adobe\"><\/p>\n<h2 title=\"Crawler bots to snub animated content starting this year\">Google goes full Anti-Flash-ist, boots Adobe&#8217;s insecure monstrosity out of web search index<\/h2>\n<p><a href=\"https:\/\/www.theregister.co.uk\/2019\/10\/29\/google_to_stop_indexing_flash_files\/\"><span>READ MORE<\/span><\/a><\/div>\n<p>Tutorials <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/github.com\/myflashlab\/ADBMobile\/wiki\/01.-Getting-Started\">make similar recommendations<\/a>. And it appears developers don&#8217;t always recognize the problem \u2013 <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/github.com\/pjq\/omniture\/blob\/master\/omniture\/assets\/ADBMobileConfig.json\">this repo<\/a>, for example, has an SSL setting of false.<\/p>\n<p>Adobe didn&#8217;t immediately respond to a request for comment.<\/p>\n<p>The cloud marketing biz has set the sunset date its v4 SDKs as September 2020 and future versions should be free this problem. In a response sent to Nightwatch, Adobe said customers usually download a file from Mobile Services, where SSL is on by default, have Adobe professional services create a config file, where SSL is recommended, or customers will create their own config file, where most enable SSL.<\/p>\n<p>In an email to <em>The Register<\/em>, a spokesperson for Nightwatch said, &#8220;[Developers] are supposed to replace the config file with one downloaded from the developer portal&#8230; but they often don&#8217;t.&#8221;<\/p>\n<p>Nightwatch has released an open source tool called <a target=\"_blank\" rel=\"nofollow noopener noreferrer\" href=\"https:\/\/github.com\/nightwatchcybersecurity\/truegaze\">truegaze<\/a> on GitHub to perform static analysis on existing Experience Platform apps to see if they implement vulnerable SSL settings.<\/p>\n<p>The security biz said that it isn&#8217;t aware of whether the lack of SSL in apps implementing Adobe&#8217;s SDKs has been been exploited in the wild or how many existing applications may be affected. \u00ae<\/p>\n<p class=\"wptl btm\"><span>Sponsored:<\/span> <a href=\"https:\/\/go.theregister.co.uk\/tl\/1858\/-7813\/how-to-get-more-from-microstrategy-by-optimising-your-data-stack?td=wptl1858\">How to get more from MicroStrategy by optimising your data stack<\/a><\/p>\n<p>READ MORE <a href=\"https:\/\/go.theregister.co.uk\/feed\/www.theregister.co.uk\/2019\/11\/07\/adobe_sdks_flawed\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Mobile app SDKs sport dodgy crypto defaults, set bad examples \u2013 updates available It has been revealed that Adobe&#8217;s Experience Platform mobile SDKs, used to create apps that interact with the company&#8217;s cloud services, until recently contained sample configuration files that created insecure default settings.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":31713,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-31712","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>This may shock you but Adobe is shipping insecure software. No, it&#039;s not Flash this time. Nope, not Acrobat, either 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"This may shock you but Adobe is shipping insecure software. No, it&#039;s not Flash this time. Nope, not Acrobat, either 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-11-07T21:28:05+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/11\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"174\" \/>\n\t<meta property=\"og:image:height\" content=\"115\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"This may shock you but Adobe is shipping insecure software. No, it&#8217;s not Flash this time. Nope, not Acrobat, either\",\"datePublished\":\"2019-11-07T21:28:05+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/\"},\"wordCount\":505,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/11\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/\",\"name\":\"This may shock you but Adobe is shipping insecure software. No, it's not Flash this time. Nope, not Acrobat, either 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/11\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg\",\"datePublished\":\"2019-11-07T21:28:05+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/11\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/11\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg\",\"width\":174,\"height\":115},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"This may shock you but Adobe is shipping insecure software. No, it&#8217;s not Flash this time. Nope, not Acrobat, either\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"This may shock you but Adobe is shipping insecure software. No, it's not Flash this time. Nope, not Acrobat, either 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/","og_locale":"en_US","og_type":"article","og_title":"This may shock you but Adobe is shipping insecure software. No, it's not Flash this time. Nope, not Acrobat, either 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-11-07T21:28:05+00:00","og_image":[{"width":174,"height":115,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/11\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"This may shock you but Adobe is shipping insecure software. No, it&#8217;s not Flash this time. Nope, not Acrobat, either","datePublished":"2019-11-07T21:28:05+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/"},"wordCount":505,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/11\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/","url":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/","name":"This may shock you but Adobe is shipping insecure software. No, it's not Flash this time. Nope, not Acrobat, either 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/11\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg","datePublished":"2019-11-07T21:28:05+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/11\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/11\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either.jpg","width":174,"height":115},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/this-may-shock-you-but-adobe-is-shipping-insecure-software-no-its-not-flash-this-time-nope-not-acrobat-either\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"This may shock you but Adobe is shipping insecure software. No, it&#8217;s not Flash this time. Nope, not Acrobat, either"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/31712","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=31712"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/31712\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/31713"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=31712"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=31712"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=31712"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}