Items tagged with Adobe

It seems as though most (if not all) Internet users are awaiting the day when Adobe Flash is finally eradicated from the face of the earth. The Adobe Flash Player plugin has long been a security liability, resource nightmare and battery hog (for mobile users). Although Adobe has announced that it is winding down the use of Flash in favor of HTML5 development, we still have to deal with critical exploits until judgment day arrives. Hence the company has rushed out an emergency patch for Adobe Flash player. According to Adobe, the most serious exploit, CVE-2016-1010, has already been “used in limited,... Read more...
Adobe acknowledged that it muffed an update to its Creative Cloud Desktop application last week, one that caused it to delete files on a "small number" of Mac systems. Once it became aware of the issue, Adobe pulled the plug on the update and has since made another one available for both Mac and Windows systems (there's no indication that the issue affects Windows PCs). "In a small number of cases, the updater may incorrectly remove some files from the system root directory with user writeable permissions. We have removed the update from distribution, and are in the process of deploying a new update... Read more...
2015 has proven to be a massive year for Adobe's Flash plugin, but for all the wrong reasons. Flash is already infamous for being one of the most vulnerable pieces of software on the planet, but in 2015, 316 bugs were found and squashed. That comes out to about 6 bugs per week for a piece of software that's used by the vast majority of notebook and desktop users. What's most impressive about the sheer number of bugs Flash has is the fact that ultimately, we're dealing with a mere plugin here, not a massive software package. While Flash was once considered "cool", a de facto choice for Web animation,... Read more...
As if Adobe's Flash Player needed another nail in its coffin, it nevertheless received yet another one this weekend from Facebook. The world's largest social playground announced that it recently flipped the switch over to HTML5 to be the default video player for videos on its website, and that includes the ones that appear in its News Feed. "From development velocity to accessibility features, HTML5 offers a lot of benefits. Moving to HTML5 best enables us to continue to innovate quickly and at scale, given Facebook’s large size and complex needs," Facebook stated in a blog post. You could see... Read more...
We’ve been saying it for years: Adobe needs to go ahead and kill Flash. Late Apple CEO Steve Jobs called for Flash’s demise five years ago and at the time, it seemed like an impossibility. But after a half decade of increasing security exploits and performance degradation in even the most powerful PCs, the Internet has quite effectively turned its back on Flash. Companies like Amazon, Google and Firefox have all given Flash the cold shoulder in recent months and the lapses in security show no signs of slowing down. Adobe has finally gotten the hint and is retiring the Flash brand. “Flash has played... Read more...
At this point, we are no longer surprised that Adobe Flash is being used as an easy vector to exploit computers and entire network. Back in the day, late Apple CEO Steve Jobs trashed Adobe Flash, calling it buggy, full of security holes and detrimental to the battery life of mobile devices. Five years later, Flash is still with us and it is still wreaking havoc on all three of those fronts.  The latest Flash vulnerability was revealed this week, and it affects ALL version of the software — yes, even version 19.0.0.207, which was released on Tuesday. The exploit, which is labeled CVE-2015-7645,... Read more...
The security gurus at Trend Micro believe that the cyber attackers behind Pawn Storm are performing their dirty deeds by way of a new zero-day vulnerability in none other than Adobe's Flash platform. Shocking that Flash is at the root of it all, isn't it? This is where we all feign surprise, sarcastically of course.In case you're not familiar, Pawn Storm is the name of a cyber espionage campaign that's had high profile targets in its sights. Trend Micro also says that Pawn Storm represents the first use of a Java zero-day that it's seen in the last couple of years, with the affected vulnerability... Read more...
Amazon is the latest major tech company to kick Adobe's Flash platform to the curb. Effective September 1, 2015, the world's most popular online retailer will no longer accept Flash-based advertisements on its main site or through it's third-party Amazon Advertising Platform (AAP), the company announced this week. Interestingly, it's not Flash's history of security woes that prompted Amazon's decision. "This is driven by recent browser setting updates from Google Chrome, and existing browser settings from Mozilla Firefox and Apple Safari, that limits Flash content displayed on web pages," Amazon... Read more...
Adobe's Flash platform is running out of friends. You may recall that a few weeks ago Mozilla disabled Flash by default in its Firefox browser due to the discovery of multiple critical vulnerabilities, and around the same time, Facebook's chief security officer urged Adobe to set a kill date for its buggy API. Expect more of those sentiments following a recent week long attack on Yahoo's ad network. Security outfit Malwarebytes discovered the "malvertising" campaign, which kicked off on July 28. It involved hackers purchasing ads across Yahoo's various sites and then injecting them with malicious... Read more...
Adobe Flash is going down! Flash has been a boil on the butt of the Internet for years, but we’ve just put up with it despite the often horrid performance and numerous security lapses. However, some recent high-priority hacks using Flash as a conduit have only increased the number of people calling for the demise of the most hated piece of software on the Internet. Twitch, the online game streaming giant, is the latest to announce that it will move away from using Flash (Google’s competing YouTube Gaming service debuted with HTML5 support). Twitch’s efforts to distance itself were aired earlier... Read more...
Has the time come to put Adobe's Flash Player plugin out of our misery? Facebook CSO Alex Stamos thinks so. In a series of Twitter posts, Stamos makes a plea for Adobe to set a date to euthanize Flash, allowing the web and Internet users at large to move on to better (and more secure) technologies. The question is, will Adobe do it?Probably not at the sole behest of Stamos, though he isn't the only one calling for an end to Flash. An anonymous group calling it Occupy Flash has been pushing for the same thing for the past few years. The Occupy Flash website has been tweeted out thousands of times,... Read more...
In the wake of recent security threats that have come to light, Mozilla has made the decision to block Adobe Flash content by default on all versions of its Firefox browser. Mark Schmidt, head of Firefox support at Mozilla and CEO of SupportHacker, announced the change via Twitter on Monday, adding that this is a temporary thing. "BIG NEWS!! All versions of Flash are blocked by default in Firefox as of now. To be clear, Flash is only blocked until Adobe releases a version which isn't being actively exploited by publicly known vulnerabilities," Schmidt said. This has been a bad month for Adobe and... Read more...
We reported last week on a new zero-day vulnerability in Adobe Flash that was revealed following the leak of data from the Italian hacking group "Hacking Team". It's hardly a surprise when such a vulnerability is found in either Flash or Java, and as sad as it is, it's not even surprising to learn that two more have been found. Oy! The latest vulnerabilities, named CVE-2015-5122 and CVE-2015-5123, are considered critical, and affect the Flash player on Windows, OS X, and Linux. A verbatim threat to last week's vulnerability, "successful... Read more...
This week, something nearly as common as breathing happened: a severe Adobe Flash vulnerability was revealed. How this one came to be, however, is far more interesting than most. Earlier this week, a well-known Italian hacking group called 'Hacking Team' was itself hacked. On Monday, the group's Twitter account was hijacked to post a link to a torrent file that includes about 400GB worth of its data. We're now finding out that this data could have huge repercussions for software vendors and regular consumers alike. Because Hacking Team's efforts largely revolve around exploiting bugs in popular... Read more...
1 2 3 4 5 Next ... Last