RSA hack exploited Flash

We’re getting more details about the hack attack at RSA’s Security Division, a leading provider of government cybersecurity. The company says last month’s attack resulted from an advanced persistent threat that took advantage weakness in Adobe Flash Player. Government Computer News reports the attack came in two spear-phishing e-mails sent over two days to two small groups of RSA employees. The e-mail looked like a real internal message and tricked one employee into opening an attached Excel file. Once opened the attack gathered information about RSA’s SecurID product.

This story is part of Federal News Radio’s daily Cybersecurity Update brought to you by Tripwire. For more cybersecurity news, click here.