NSA Recommends Adobe Acrobat Reader Security Configurations

The National Security Agency (NSA) released “Recommendations for Configuring Adobe® Acrobat® Reader® DC in a Windows® Environment” today. The technical report addresses the longstanding issue of cyber actors using malicious PDFs when targeting victim networks. Specifically, it details recommended Adobe Reader configuration settings for systems administrators to help minimize the risk of executable content and other malicious activity in a Windows environment.

NSA recommends administrators implement modern security features for sandboxing and access control – configurations that can be rolled across networks to limit this common access vector at scale. Also included in the report is guidance for those who only need the basic viewing function for PDFs in addition to more complex uses, such as data sharing.

Administrators are encouraged to carefully review this document to select configuration options that will have minimal impact on usability while providing maximum protection for their organizations.

Review the full technical report.

Read more at NSA

Homeland Security Today

The Government Technology & Services Coalition's Homeland Security Today (HSToday) is the premier news and information resource for the homeland security community, dedicated to elevating the discussions and insights that can support a safe and secure nation. A non-profit magazine and media platform, HSToday provides readers with the whole story, placing facts and comments in context to inform debate and drive realistic solutions to some of the nation’s most vexing security challenges.

See Full Bio