Jaption's Company: Flash

Showing posts with label Flash. Show all posts

Wednesday, 28 January 2015

YouTube declined Flash in favor of HTML5 by default

The team of development had announced that now HTML5 will be the standard of default settings for playing movies, instead of Flash. HTML5 will be used for playback of content service on the web browser Google Chrome, MS IE11, Apple Safari 8 and beta versions of Mozilla Firefox.
A few years ago zapustileksperimentalnuyu YouTube version of the player to HTML5 devices or OS, which does not support Flash Player, or simply do not want to use it (for example, iOS).

Attack for Flash 0day goes live in popular exploit kit

If you've been meaning to disable Adobe Flash, now might be a good time. Attacks exploiting a critical vulnerability in the latest version of the animation software have been added to a popular exploitation kit, researchers confirmed. Attackers often buy the kits to spare the hassle of writing their own weaponized exploits.

Prolific exploit sleuth Kafeine uncovered the addition to Angler, an exploit kit available in underground forums. The zero-day vulnerability was confirmed by Malwarebytes. Malwarebytes researcher Jérôme Segura said one attack he observed used the new exploit to install a distribution botnet known as Bedep.

Adobe officials say only that they're investigating the reports. Until there's a patch, it makes sense to minimize use of Flash when possible. AV software from Malwarebytes and others can also block Angler attacks.

PROMOTED COMMENTS

DayvidArs Praetorian
jump to post

dhay wrote:

All these years, all these bugs in Adobe products. The code must be god awful inside.

You would think that the bugs follow patterns, and they could proactively remove them with code reviews. Or it is just that bad.

It's just that getting security absolutely right is almost impossibly hard - security issues in these sorts of products are very often not simple bugs. The core issue is that adobe has a couple incredibly popular web facing components which also happen to be very complex products and thus are fantastic targets.

517 posts | registered Jun 30, 2012
Source: arstechnica.com

Wednesday, 21 January 2015

Attackers have increasingly exploit vulnerabilities in Silverlight

Cybercriminals have switched to the platform from Microsoft in connection with more security for Java.
In the second half of 2014 increased the number of attackers exploiting vulnerabilities in Microsoft Silverlight. This was reported in the annual report on the security of Cisco. However, Flash and Java are still considered leaders in the number of existing exploits