Thursday, September 3, 2015

Java and Flash Both Vulnerable to Attack (Again)

We noted a recent post in ARS Technica (UK) that Java and Flash are both vulnerable (again) to 0-day attacks. These weaknesses in the code could allow hackers to install malware on end-user computers or potentially execute malicious code remotely. Adobe issued an advisory saying the bugs in Flash will be patched.

Meanwhile, Google announced they would start blocking Adobe Flash ads on their Chrome browser on September 1. With Flash ads now defaulting to "pause" users will have to "click" to play the ads. (We say "fat chance".) With a little more than half of all desktop computers running Chrome this is a big deal to advertisers. Firefox too blocked Flash due to security concerns.

With repeated security concerns and performance issues we saw this coming and shifted our website development work to HTML5 like three years ago. Given these latest developments we recommend making this shift sooner rather than later.

For more on this, check out the article posted at Business Insider:

Business Insider article: Adobe Flash is Dying a Death by 1,000 Cuts

No comments:

Post a Comment