Adobe修復PDF閱讀器零日漏洞，已被黑客利用至少四個月

IT之家

04/15

IT之家 4 月 15 日消息，Adobe 已為其旗艦文檔閱讀應用程序 Acrobat DC、Reader DC 及 Acrobat 2024 修復了一個漏洞，該漏洞已被黑客至少主動利用了四個月。

IT之家注意到，該漏洞官方編號為 CVE-2026-34621，黑客可通過誘騙用戶在 Windows 或 macOS 設備上打開精心構造的惡意 PDF 文件，遠程在設備上植入惡意軟件。該利用程序針對部分版本的 Adobe Reader 軟件中的漏洞。

目前尚不清楚此次黑客攻擊活動已影響多少用戶。Adobe 在其官網公告中表示，已知曉該漏洞正被在野利用（即零日漏洞），這意味着黑客在 Adobe 發布修復程序之前，就已利用該漏洞入侵用戶電腦。

目前暫未查明此次黑客行動的幕後主使。由於 Adobe PDF 閱讀軟件使用範圍極廣，一直是網絡犯罪分子與境外背景黑客組織的重點攻擊目標，他們長期利用該軟件的漏洞竊取用戶電腦中的數據。

安全研究員李海飛（Haifei Li，音譯）運營着漏洞利用檢測系統 EXPMON，在有人上傳一份包含該漏洞利用代碼的惡意 PDF 樣本到其惡意軟件掃描平台後，他發現了此漏洞。李海飛在博客中提到，另一款含惡意代碼的 PDF 樣本已於 2025 年 11 月下旬首次出現在在線惡意軟件掃描平台 VirusTotal 上。

目前仍不清楚此次黑客行動的攻擊目標與動機，李海飛表示，無法從黑客服務器獲取更多漏洞利用程序。但根據其分析，打開惡意 PDF 並觸發漏洞「可能導致受害者系統被完全控制」，黑客可藉此竊取各類數據。

Adobe 確認 Acrobat DC、Reader DC 和 Acrobat 2024 均受影響，並強烈建議用戶將軟件更新至最新版本。

免責聲明：投資有風險，本文並非投資建議，以上內容不應被視為任何金融產品的購買或出售要約、建議或邀請，作者或其他用戶的任何相關討論、評論或帖子也不應被視為此類內容。本文僅供一般參考，不考慮您的個人投資目標、財務狀況或需求。TTM對信息的準確性和完整性不承擔任何責任或保證，投資者應自行研究並在投資前尋求專業建議。

熱議股票

1
2
3
4
5
6
7
8
9
10

{"basename":"/hant","ssrTDKData":{"titleTemplate":"%s - 老虎證券","title":"老虎证券全球投资理财平台| 一站式投资美股新股港股A股","description":"老虎证券助您一站式投资美股，新股，港股，A股等全球金融理财产品。新加坡华人最信赖的在线投资平台，现在加入即享低费用，24/5 无时差炒美股投资理财！","keywords":"老虎證券,老虎證券開戶,老虎券商,老虎證券官網,老虎證券app,tigertrade老虎證券,股票,炒股,新加坡股票交易平臺,投資,投資理財","social":{"ogDescription":"老虎证券助您一站式投资美股，新股，港股，A股等全球金融理财产品。新加坡华人最信赖的在线投资平台，现在加入即享低费用，24/5 无时差炒美股投资理财！","ogImage":"https://c1.itigergrowtha.com/portal5/static/media/og-logo.be62fbe1.png","ogUrl":"https://www.itiger.com/hant/news/2627420054"},"companyName":"老虎證券"},"pageData":{"isMobile":false,"isTiger":false,"isTTM":true,"region":"SGP","license":"TBSG","edition":"fundamental"},"isCrawlerRequest":true,"__swrFallback__":{"@#url:\"https://stock-news.skytigris.cn/v3/news\",params:#id:\"2627420054\",edition:\"fundamental\",auth_exemption:1,,,undefined,":{"share":"https://ttm.financial/m/news/2627420054?lang=zh_TW&edition=fundamental","thumbnail":"","is_english":false,"pubTime":"2026-04-15 07:16","share_image_url":"https://static.laohu8.com/e9f99090a1c2ed51c021029395664489","id":"2627420054","market":"sh","top_or_hot":-1,"title":"Adobe修復PDF閱讀器零日漏洞，已被黑客利用至少四個月","media":"IT之家","content":"<html><body><p>IT之家 4 月 15 日消息，<a href=\"https://laohu8.com/S/ADBE\">Adobe</a> 已為其旗艦文檔閱讀應用程序 Acrobat DC、Reader DC 及 Acrobat 2024 修復了一個漏洞，該漏洞已被黑客至少主動利用了四個月。</p><p><img src=\"https://x0.ifengimg.com/ucms/2026_16/DC04977BF4EF036E069823A6AC63810CB871C689_size581_w1280_h720.png\"/></p><p>IT之家注意到，該漏洞官方編號為 CVE-2026-34621，黑客可通過誘騙用戶在 Windows 或 macOS 設備上打開精心構造的惡意 PDF 文件，遠程在設備上植入惡意軟件。該利用程序針對部分版本的 Adobe Reader 軟件中的漏洞。</p><p>目前尚不清楚此次黑客攻擊活動已影響多少用戶。Adobe 在其官網公告中表示，已知曉該漏洞正被在野利用（即零日漏洞），<strong>這意味着黑客在 Adobe 發布修復程序之前，就已利用該漏洞入侵用戶電腦</strong>。</p><p>目前暫未查明此次黑客行動的幕後主使。由於 Adobe PDF 閱讀軟件使用範圍極廣，一直是網絡犯罪分子與境外背景黑客組織的重點攻擊目標，他們長期利用該軟件的漏洞竊取用戶電腦中的數據。</p><p>安全研究員李海飛（Haifei Li，音譯）運營着漏洞利用檢測系統 EXPMON，在有人上傳一份包含該漏洞利用代碼的惡意 PDF 樣本到其惡意軟件掃描平台後，他發現了此漏洞。李海飛在博客中提到，另一款含惡意代碼的 PDF 樣本已於 2025 年 11 月下旬首次出現在在線惡意軟件掃描平台 VirusTotal 上。</p><p>目前仍不清楚此次黑客行動的攻擊目標與動機，李海飛表示，無法從黑客服務器獲取更多漏洞利用程序。但根據其分析，打開惡意 PDF 並觸發漏洞「可能導致受害者系統被完全控制」，黑客可藉此竊取各類數據。</p><p>Adobe 確認 Acrobat DC、Reader DC 和 Acrobat 2024 均受影響，並強烈建議用戶將軟件更新至最新版本。</p></body></html>","source":"fenghuang_stock","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>Adobe修復PDF閱讀器零日漏洞，已被黑客利用至少四個月</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 12.5px; color: #7E829C; margin: 0;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\nAdobe修復PDF閱讀器零日漏洞，已被黑客利用至少四個月\n</h2>\n<h4 class=\"meta\">\n<p class=\"head\">\n<strong class=\"h-name small\">IT之家</strong><span class=\"h-time small\">2026-04-15 07:16</span>\n</p>\n</h4>\n</header>\n<article>\n<html><body><p>IT之家 4 月 15 日消息，<a href=\"https://laohu8.com/S/ADBE\">Adobe</a> 已為其旗艦文檔閱讀應用程序 Acrobat DC、Reader DC 及 Acrobat 2024 修復了一個漏洞，該漏洞已被黑客至少主動利用了四個月。</p><p><img src=\"https://x0.ifengimg.com/ucms/2026_16/DC04977BF4EF036E069823A6AC63810CB871C689_size581_w1280_h720.png\"/></p><p>IT之家注意到，該漏洞官方編號為 CVE-2026-34621，黑客可通過誘騙用戶在 Windows 或 macOS 設備上打開精心構造的惡意 PDF 文件，遠程在設備上植入惡意軟件。該利用程序針對部分版本的 Adobe Reader 軟件中的漏洞。</p><p>目前尚不清楚此次黑客攻擊活動已影響多少用戶。Adobe 在其官網公告中表示，已知曉該漏洞正被在野利用（即零日漏洞），<strong>這意味着黑客在 Adobe 發布修復程序之前，就已利用該漏洞入侵用戶電腦</strong>。</p><p>目前暫未查明此次黑客行動的幕後主使。由於 Adobe PDF 閱讀軟件使用範圍極廣，一直是網絡犯罪分子與境外背景黑客組織的重點攻擊目標，他們長期利用該軟件的漏洞竊取用戶電腦中的數據。</p><p>安全研究員李海飛（Haifei Li，音譯）運營着漏洞利用檢測系統 EXPMON，在有人上傳一份包含該漏洞利用代碼的惡意 PDF 樣本到其惡意軟件掃描平台後，他發現了此漏洞。李海飛在博客中提到，另一款含惡意代碼的 PDF 樣本已於 2025 年 11 月下旬首次出現在在線惡意軟件掃描平台 VirusTotal 上。</p><p>目前仍不清楚此次黑客行動的攻擊目標與動機，李海飛表示，無法從黑客服務器獲取更多漏洞利用程序。但根據其分析，打開惡意 PDF 並觸發漏洞「可能導致受害者系統被完全控制」，黑客可藉此竊取各類數據。</p><p>Adobe 確認 Acrobat DC、Reader DC 和 Acrobat 2024 均受影響，並強烈建議用戶將軟件更新至最新版本。</p></body></html>\n<div class=\"bt-text\">\n\n\n<p> 來源：<a href=\"https://tech.ifeng.com/c/8sKsrUS8zIl\">IT之家</a></p>\n<p>為提升您的閱讀體驗，我們對本頁面進行了排版優化</p>\n\n\n</div>\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"IE00B5TLWC47.USD","symbol_name":"BNY MELLON LONG-TERM GLOBAL EQUITY \"B\" (USD) ACC","start_time":0,"source_url":"https://tech.ifeng.com/c/8sKsrUS8zIl","article_id":"2627420054","we_media_id":null,"thumbnails":[],"rights":null,"url":"https://stock-news.laohu8.com/highlight/detail?id=2627420054","pubTimestamp":1776208605,"columns":[],"sourceInfo":{"source_id":"fenghuang_stock","name":"凤凰网"},"weMediaInfo":null,"summary":"IT之家 4 月 15 日消息，Adobe 已為其旗艦文檔閲讀應用程序 Acrobat DC、Reader DC 及 Acrobat 2024 修復了一個漏洞，該漏洞已被黑客至少主動利用了四個月。由於 Adobe PDF 閲讀軟件使用範圍極廣，一直是網絡犯罪分子與境外背景黑客組織的重點攻擊目標，他們長期利用該軟件的漏洞竊取用户電腦中的數據。Adobe 確認 Acrobat DC、Reader DC 和 Acrobat 2024 均受影響，並強烈建議用户將軟件更新至最新版本。","collect":0,"end_time":0,"defaultTopTitle":"ifeng.com","property":[],"viewcount":null,"language":"zh","relate_stocks":{"IE00B5TLWC47.USD":"BNY MELLON LONG-TERM GLOBAL EQUITY \"B\" (USD) ACC","SG9999001424.SGD":"United E-Commerce Fund SGD","LU0868494708.USD":"UBS (LUX) EQUITY SICAV - US TOTAL YIELD SUSTAINABLE \"P\" (USD) INC","BK4023":"应用软件","BK4554":"元宇宙及AR概念","LU2089284900.SGD":"Allianz Global Sustainability Cl AM Dis H2-SGD","LU1261432733.SGD":"Fidelity World A-ACC-SGD","LU2237438978.USD":"Amundi Funds US Pioneer A2 (C) USD","BK4585":"ETF&股票定投概念","LU2236285917.USD":"ALLIANZ GLOBAL INCOME \"AMG\" (USD) INC","LU0158827948.USD":"ALLIANZ GLOBAL SUSTAINABILITY \"A\" (USD) INC","LU1823568750.SGD":"Fidelity Global Technology A-ACC SGD","SGXZ81514606.USD":"大华环球创新基金A Acc USD","LU0320765059.SGD":"FTIF - Franklin US Opportunities A Acc SGD","LU1674673691.USD":"HSBC GIF GLOBAL LOWER CARBON EQUITY \"AD\" (USD) INC","LU0157215616.USD":"FIDELITY GLOBAL FOCUS \"A\" INC","LU0234570918.USD":"高盛全球核心股票组合Acc Close","LU1674673428.USD":"HSBC GIF GLOBAL LOWER CARBON EQUITY \"AC\" (USD) ACC","BK4588":"碎股","LU0942090050.USD":"UBS (LUX) EQUITY SICAV - US TOTAL YIELD SUSTAINABLE \"P\" (USD)  INC","LU0708995401.HKD":"FRANKLIN U.S. OPPORTUNITIES \"A\" (HKD) ACC","LU1267930813.SGD":"FRANKLIN TEMPLETON SHARIAH GLOBAL EQUITY \"AS\" (SGD) ACC","ADBE":"Adobe","LU1235294995.USD":"FIDELITY GLOBAL TECHNOLOGY \"A\" (USDHDG) ACC","LU1046421795.USD":"富达环球科技A-ACC","LU0289739343.SGD":"SUSTAINABLE GLOBAL THEMATIC PORTFOLIO \"A\" (SGD) ACC","LU2125154778.USD":"ALLSPRING GLOBAL EQUITY ENHANCED INCOME \"A\" (USD) INC","LU0511384066.AUD":"SUSTAINABLE GLOBAL THEMATIC PORTFOLIO \"A\" (AUDHDG) ACC","LU0861579265.USD":"联博低波幅策略股票基金A","LU0234572021.USD":"高盛美国核心股票组合Acc","LU0109392836.USD":"富兰克林科技股A","IE00BYQQ9H92.USD":"BNY MELLON GLOBAL LEADERS \"A\" (USD) ACC","IE00B19Z9505.USD":"美盛-美国大盘成长股A Acc","BK4567":"ESG概念","LU2023251221.USD":"ALLIANZ GLOBAL SUSTAINABILITY \"AM\" (USD) INC","LU0965509010.AUD":"AB LOW VOLATILITY EQUITY PORTFOLIO \"AD\" (AUDHDG) INC","BK4566":"资本集团","LU0006306889.USD":"SCHRODER ISF US LARGE CAP \"A\" (USD) INC AV","BK4528":"SaaS概念","LU2095319765.USD":"Natixis Thematics Subscription Economy R/A USD","LU0061474960.USD":"天利环球焦点基金AU Acc","LU1720051108.HKD":"ALLIANZ GLOBAL ARTIFICIAL INTELLIGENCE \"AT\" (HKD) ACC","LU1084165304.USD":"FIDELITY WORLD \"A\" (USD) ACC","LU2210150020.SGD":"Natixis Thematics Subscription Economy R/A SGD","LU1691799644.USD":"Amundi Funds Polen Capital Global Growth A2 (C) USD","LU0672654240.SGD":"FTIF - Franklin US Opportunities A Acc SGD-H1","LU0965509283.SGD":"AB LOW VOLATILITY EQUITY PORTFOLIO \"AD\" (SGDHDG) INC","LU2210149790.SGD":"Natixis Thematics Subscription Economy R/A SGD-H","LU2089283258.USD":"安联环球可持续基金Cl AM Dis","LU2317271919.USD":"BGF FUTURE CONSUMER \"A2\" (USD) ACC","LU0170899867.USD":"EASTSPRING INVESTMENTS WORLD VALUE EQUITY  \"A\" (USD) ACC","IE00BFXG0V08.USD":"BNY MELLON GLOBAL LEADERS \"B\" (USD) ACC","LU1548497426.USD":"安联环球人工智能AT Acc","SGXZ99366536.SGD":"United Global Innovation A Acc SGD-H","LU0069063385.USD":"SUSTAINABLE GLOBAL THEMATIC PORTFOLIO \"A\" (USD) ACC","LU0889565833.HKD":"FRANKLIN TECHNOLOGY \"A\" (HKD) ACC","LU0957791311.USD":"THREADNEEDLE (LUX) GLOBAL FOCUS \"ZU\" (USD) ACC","LU0314104364.USD":"MANULIFE GF AMERICAN GROWTH \"AA\" (USD) INC","LU1815333072.USD":"THREADNEEDLE (LUX) GLOBAL FOCUS \"AUP\" (USD) INC","LU0965509101.SGD":"AB LOW VOLATILITY EQUITY PORTFOLIO \"A\" (SGDHDG) ACC","SGXZ51526630.SGD":"大华环球创新基金A Acc SGD","LU0106261372.USD":"SCHRODER ISF US LARGE CAP \"A\" ACC","ADBG":"2倍做多ADBE ETF- Leverage Shares","BK4527":"明星科技股","LU1633808545.USD":"ALLIANZ GLOBAL EQUITY GROWTH \"AT\" (USD) ACC","LU1778281490.HKD":"HSBC GIF GLOBAL LOWER CARBON EQUITY \"AD\" (HKD) INC","LU0082616367.USD":"摩根大通美国科技A（dist）","IE0009356076.USD":"JANUS HENDERSON GLOBAL TECHNOLOGY AND INNOVATION \"A2\" (USD) ACC","LU1803068979.SGD":"FTIF - Franklin Technology A (acc) SGD-H1","LU0348723411.USD":"ALLIANZ GLOBAL HI-TECH GROWTH \"A\" (USD) INC","LU1720051017.SGD":"Allianz Global Artificial Intelligence AT Acc H2-SGD","LU2360032135.SGD":"ALLSPRING GLOBAL EQUITY ENHANCED INCOME \"A\" (SGDHDG) INC","LU0472753341.HKD":"SUSTAINABLE GLOBAL THEMATIC PORTFOLIO \"A\" (HKD) ACC","LU2458330243.SGD":"FRANKLIN SHARIAH TECHNOLOGY \"A-H1\" (SGDHDG) ACC","LU0057025933.USD":"SUSTAINABLE GLOBAL THEMATIC PORTFOLIO \"AX\" (USD) ACC","LU1623119135.USD":"Natixis Mirova Global Sustainable Equity R-NPF/A USD","LU2458330169.SGD":"FRANKLIN SHARIAH TECHNOLOGY \"A\" (SGD) ACC","IE00BQXX3D17.EUR":"GUINNESS GLOBAL INNOVATORS \"C\" (EUR) ACC","LU1712237335.SGD":"Natixis Mirova Global Sustainable Equity H-R-NPF/A SGD","LU0345774391.USD":"NINETY ONE GSF AMERICAN FRANCHISE \"A\" (USD) ACC","BK4581":"高盛持仓","IE00BQXX3C00.GBP":"GUINNESS GLOBAL INNOVATORS \"C\" (GBP) ACC","LU0868494617.USD":"UBS (LUX) EQUITY SICAV - US TOTAL YIELD SUSTAINABLE \"P\" (USD) ACC","BK4543":"AI","IE00BQXX3F31.USD":"GUINNESS GLOBAL INNOVATORS \"C\" (USD) ACC","LU2125154935.USD":"ALLSPRING (LUX) WF GLOBAL EQUITY ENHANCED INCOME \"I\" (USD) INC","BK4534":"瑞士信贷持仓","LU0792757196.USD":"TEMPLETON SHARIAH GLOBAL EQUITY FUND \"A\" (USD) ACC","BK4533":"AQR资本管理(全球第二大对冲基金)","LU1366333091.USD":"FIDELITY GLOBAL FOCUS \"A\" (USD) ACC","LU0557290698.USD":"施罗德环球可持续增长基金","LU0719512351.SGD":"JPMorgan Funds - US Technology A (acc) SGD","BK4592":"伊斯兰概念","LU0889566641.SGD":"FTSF - Templeton Shariah Global Equity A Acc SGD","SG9999000418.SGD":"Aberdeen Standard Global Technology SGD","LU0198837287.USD":"UBS (LUX) EQUITY SICAV - USA GROWTH \"P\" (USD) ACC","LU0081259029.USD":"UBS (LUX) EQUITY FUND - TECH OPPORTUNITY \"P\" (USD) ACC","LU1267930730.SGD":"富兰克林美国机遇基金AS Acc SGD (CPF)","LU0345774631.USD":"NINETY ONE GSF AMERICAN FRANCHISE \"A\" (USD) INC","LU2357305700.SGD":"Allianz Global Artificial Intelligence ET H2-SGD","LU0289961442.SGD":"SUSTAINABLE GLOBAL THEMATIC PORTFOLIO \"AX\" (SGD) ACC","LU0109391861.USD":"富兰克林美国机遇基金A Acc","LU1119994496.HKD":"FIDELITY WORLD \"A\" (HKD) ACC","LU0342679015.USD":"ALLIANZ GLOBAL EQUITY UNCONSTRAINED \"AT\" (USD) ACC"},"translate_title":"Adobe fixes PDF reader zero-day vulnerability that has been exploited by hackers for at least four months","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"ADBE":1.94,"ADBG":0.6},"content_text":"IT之家 4 月 15 日消息，Adobe 已為其旗艦文檔閲讀應用程序 Acrobat DC、Reader DC 及 Acrobat 2024 修復了一個漏洞，該漏洞已被黑客至少主動利用了四個月。IT之家注意到，該漏洞官方編號為 CVE-2026-34621，黑客可通過誘騙用户在 Windows 或 macOS 設備上打開精心構造的惡意 PDF 文件，遠程在設備上植入惡意軟件。該利用程序針對部分版本的 Adobe Reader 軟件中的漏洞。目前尚不清楚此次黑客攻擊活動已影響多少用户。Adobe 在其官網公告中表示，已知曉該漏洞正被在野利用（即零日漏洞），這意味着黑客在 Adobe 發布修復程序之前，就已利用該漏洞入侵用户電腦。目前暫未查明此次黑客行動的幕後主使。由於 Adobe PDF 閲讀軟件使用範圍極廣，一直是網絡犯罪分子與境外背景黑客組織的重點攻擊目標，他們長期利用該軟件的漏洞竊取用户電腦中的數據。安全研究員李海飛（Haifei Li，音譯）運營着漏洞利用檢測系統 EXPMON，在有人上傳一份包含該漏洞利用代碼的惡意 PDF 樣本到其惡意軟件掃描平台後，他發現了此漏洞。李海飛在博客中提到，另一款含惡意代碼的 PDF 樣本已於 2025 年 11 月下旬首次出現在在線惡意軟件掃描平台 VirusTotal 上。目前仍不清楚此次黑客行動的攻擊目標與動機，李海飛表示，無法從黑客服務器獲取更多漏洞利用程序。但根據其分析，打開惡意 PDF 並觸發漏洞「可能導致受害者系統被完全控制」，黑客可藉此竊取各類數據。Adobe 確認 Acrobat DC、Reader DC 和 Acrobat 2024 均受影響，並強烈建議用户將軟件更新至最新版本。","kind":"news","is_publish_news":true,"is_publish_highlight":false,"is_publish_live":false,"is_publish_wemedia":null,"editions":null,"column":"","sentiment":"0","news_tag":"","news_rank":0,"isVideo":false,"video":null,"symbols":[],"gpt_button":1,"need_auth":false,"need_login_tip":false,"code":"91000000","status":"200"}}}