(Reuters) – Cyber security firm Kaspersky Lab Inc said on Monday it identified a vulnerability in Adobe Flash that could be used to deploy a surveillance malware through a Microsoft Word document. The bug was used in an attack on Oct. 10 by a group called the BlackOasis, Kaspersky said.