Security flaw in Flash is becoming major issue in Adobe.Flash may be terminally ill, but it continues to be a favorite attack vector for hackers. The latest example is CVE-2018-4878, which reports an ugly 0-day critical Security flaw in Flash plug-in.
Simple trapped content inserted in a Web page or an office document allows a remote control of the infected machine. Another concern: Adobe has not yet made a patch, it will be released “in the course of next week”. The first tip is to disable the plugin.
Security flaw in Flash has been detected.
Security flaw in Flash has been detected in South Korea, where it is exploited. Moreover, according to researchers in the country, it would be a spying operation conducted by the enemy brother of North Korea.
Recall that in 2020, Flash Player will disappear for good and probably will not anyone … Adobe has made official last July the death of its much-maligned plugin that accompanied the rise of the Internet before becoming the first one of the main Achilles heel of web browsers. In fact, Flash is already largely defeated by open standards.
“While open standards like HTML5, WebGL, and WebAssembly have matured in the past few years, most now provide the functionality that plugins have introduced and have become a viable alternative for content on the Web,” recognizes Adobe.
But it’s been a long time since the big browsers started to nail nails in Flash’s coffin. In Firefox, Edge and Internet Explorer, it is possible to be systematically alerted before activating Flash. In Chrome, these alerts are automatic.