Adobe issued a security update April 7 that addresses what the software maker calls “critical vulnerabilities” in its Flash Player that could allow intruders to take control of a victim’s computer.
The vulnerability affects Flash running on Windows, Mac, Linux, and Chrome OS operating systems. Trend Micro, one of the companies involved in spotting the issue, said that the vulnerability was found to be spreading what’s been called the “Locky ransomware.” Ransomware is a type of malware (malicious software) that essentially holds a victim’s computer hostage. The attacker typically blocks off access to the system until a sum of money is paid over the Internet.
Adobe is urging users to update their Flash Player as quickly as possible. To do this, right click on Flash content in your browser and select “About Adobe Flash Player” to see which version you’re running. You can also check this by navigating to Adobe’s version information page here. This will tell you if your computer is running an outdated version edition of Flash.
Adobe notes that the vulnerability has been actively exploited on devices running Windows 10 and earlier with Flash Player version 20.0.0.306 and earlier.
Researchers from Trend Micro’s Zero Day Initiative, Google’s Project Zero, Microsoft’s security team, FireEye, and others are credited with discovering the problem. Adobe hasn’t said how many users have been affected by the ransomware.
More Must-Reads from TIME
- Donald Trump Is TIME's 2024 Person of the Year
- Why We Chose Trump as Person of the Year
- Is Intermittent Fasting Good or Bad for You?
- The 100 Must-Read Books of 2024
- The 20 Best Christmas TV Episodes
- Column: If Optimism Feels Ridiculous Now, Try Hope
- The Future of Climate Action Is Trade Policy
- Merle Bombardieri Is Helping People Make the Baby Decision
Contact us at letters@time.com