Flash Player update closes vulnerability identified by Hacking Team
Adobe on Wednesday updated Flash Player to fix a number of security vulnerabilities, including one in the hands of Hacking Team, a company that infamously sold snooping tools and services to government agencies around the world -- potentially including harsh authoritarian regimes.
The flaw was first uncovered several days ago by security researcher Brian Krebs, who found a related document in data published by a separate group of hackers that recently broke into Hacking Team's systems, TechCrunch noted. On Tuesday, Adobe issued a security bulletin promising to close the hole the next day.
At the time, Adobe claimed that people did not need to worry, as no active use of the exploit had been discovered. Mac, Windows, and Linux systems could be at risk if left unpatched.
Apple and much of the rest of the technology world has slowly distanced itself from Flash, partly because of the rise of mobile devices, but also because of security threats. Flash and Java are two of the most popular vectors for exploits.
Flash hasn't been pre-installed on Macs since late 2010. Many websites, such as YouTube, have dropped Flash from their primary interfaces and video players.
Mac, Windows, and Linux versions of the update can be downloaded from Adobe's website. The Mac release is identified as 18.0.0.203.
The flaw was first uncovered several days ago by security researcher Brian Krebs, who found a related document in data published by a separate group of hackers that recently broke into Hacking Team's systems, TechCrunch noted. On Tuesday, Adobe issued a security bulletin promising to close the hole the next day.
At the time, Adobe claimed that people did not need to worry, as no active use of the exploit had been discovered. Mac, Windows, and Linux systems could be at risk if left unpatched.
Apple and much of the rest of the technology world has slowly distanced itself from Flash, partly because of the rise of mobile devices, but also because of security threats. Flash and Java are two of the most popular vectors for exploits.
Flash hasn't been pre-installed on Macs since late 2010. Many websites, such as YouTube, have dropped Flash from their primary interfaces and video players.
Mac, Windows, and Linux versions of the update can be downloaded from Adobe's website. The Mac release is identified as 18.0.0.203.
Comments
L-O-L
What over zero-days are in flash that are being exploited for profit to excel horrendous international actions?
Can it !
It can't be worth the maintenance to patch this pos 2 times a week. Seriously.
Still can't believe so many sites still use this garbage. Especially when they're already serving up the same content to iOS devices without using it.
Still can't believe so many sites still use this garbage. Especially when they're already serving up the same content to iOS devices without using it.
Exactly!
I chalk it up mainly to stubbornly clinging to antiquated tech due to laziness in porting everything they need to other video codecs. It has been years since Flash was announced as being retired on mobile, and it is no longer supported for end users because it is a free product, and Adobe has no reason to continue its development given its status. However, since they still offer it, most companies would rather not pour resources into helping more open source video streaming codecs. This leaves consumers in a position where no one is taking any responsibility for doing anything to break this stalemate. Until enough companies dump Flash, this will continue. And for them to dump Flash, users will have to start deinstalling it to encourage them to move away or just to protect themselves from never ending security holes. Unfortunately most people are completely unaware of these problems and this stalemate will continue.
Who is their right mind at Adobe thought it was a good idea to colour the Flash Player installer a mysterious black colour?
Still can't believe so many sites still use this garbage. Especially when they're already serving up the same content to iOS devices without using it.
Ignorance, laziness and stubbornness. There... covered all possible reasons.
Flash has more holes than a sieve. They should just kill it.
When blood dries, its color turns from bright to dark red.
The beast is being slain.
Flash has more holes than a sieve. They should just kill it.
I feel sad for the developers who want it dead, but have to keep patching the codebase because Upper Management decided to keep it alive.
Also, your mo... no, nothing.
Are you kidding? It's job security
Give it up Adobe !
Can it !
It can't be worth the maintenance to patch this pos 2 times a week. Seriously.
I just deleted about 5 or 6 installers yesterday from my downloads folder. It didn't take long to get a new one in there!
I love after the install where it takes you to the Adobe website ands says "Here are some other Abode products you might be interested in..." Ya, I don't think so...
Too little, too late.
Already uninstalled...
Get rid of Flashplayer for good. Almost every day an update is needed.
Uninstall with the Flashplayer uninstaller.
In Safari: preferences add the Develop menu, then choose UserAgent ->Safari 8.1 ipad. This one loads HTML5, where possible.