Please disable Flash on your system

[ITSec]

Regardless of what operating system you use, you should disable Flash for the next few days, likely till next week. A so-called 'white hat' hacking firm (I'm dubious about them) was itself hacked recently, and some of their techniques are now in the hands of the true baddies. So far, several techniques for using even the most updated versions of Adobe Flash Player to attack systems have been found, and I believe a few more will be on the way soon.

Note that this affects all systems that use Flash Player - Windows, Mac, Linux, whatever. The flaws are NOT operating system specific. The attack would need to be, but any system that allows a browser to activate the Flash Player is potentially at risk.

Even if you limit your browser use to supposedly safe sites, you can be attacked. The usual technique for doing this is for the attacker to compromise a publisher of advertising content. The victim visits a 'good' site, like a news network, a hobby site, or something similar. That 'safe' site includes ads provided from the now compromised server, so even though the place you are visiting is not infected, some of what they send you is...

And we'll have fun, fun, fun, till her daddy takes the T-Bird away...

[Chuck in Indiana]

So, how do you disable it?

[cruzziguzzi]

Nevermind, confusion reigns.

Disabling Adobe Flash:
http://www.komando.com/tips/296083/keep-your-computer-safe-from-the-next-adobe-flash-bug

Check status of your system's Flash updates here:

http://www.adobe.com/software/flash/about/

It will automatically rate your current version relative to the most recent offered and connect to updates if needed.

Todd

[LowRyter]

I have the newest version.  Is that OK?

[sib]

I've been using Macs since 1984, and had a Lisa even before that.  I've never had a virus, worm, or any other kind of malware or compromise, and I avoid anti-virus apps like the plague that they are.  I do keep my software up to date, but I'm always amused by the hysteria.  I avoid Flash because of other reasons, like it's an inefficient CPU hog.  All this aside, these days there's little reason to use Flash, and I agree perhaps it's time to get rid of it.

[Shorty]

Don't hurt Flash, dagnabbit...

[rodekyll]

Thanks for the heads-up!  I've been discouraging my customers from using flash for some time now because of the potential for malware and counterfeit updates.  This is another reason to avoid it altogether.

[yogidozer]

I thought Flash was a TV show?

[boatdetective]

Could someone please tell us how to disable flash (in English- without having to read a multiple page article).

How long are we supposed to keep this disabled?

[bluecycle3]

well i saw this to late,  yesterday mine kept saying you need a new version so i went into google chrome and updated it.  what do i do now?   and how do i disable it?     thanks greg

[Chuck in Indiana]

well i saw this to late,  yesterday mine kept saying you need a new version so i went into google chrome and updated it.  what do i do now?   and how do i disable it?     thanks greg

I just uninstalled it. Simple. Go to Control Panel, Programs, uninstall a program.

[boatdetective]

Could someone please tell us how to disable flash (in English- without having to read a multiple page article).

How long are we supposed to keep this disabled?

Got it.

BTW- THANK YOU for the warning!

[Lcarlson]

Go to Adobe's website; download the Adobe flash player ininstaller; run the ininstaller. Adobe will then confirm that the flash player has been uninstalled from your system.

[Lcarlson]

Sorry, that's "Uninstaller" (but you probably figured that out).

[jreagan]

Actually, it is a Java day one that seems to be getting the most attention.  There are already attacks exploiting the bug.

http://blog.trendmicro.com/pawn-storm-first-java-zero-day-attack-in-two-years-targets-nato-us-defense-organizations/

As for the Flash bug,  Adobe is updating this week.

https://helpx.adobe.com/security/products/flash-player/apsa15-04.html

[slowmover]

 Now what about porn,is that still safe to look at?

[jackson]

http://money.cnn.com/2015/07/14/technology/flash-firefox-facebook/index.html

[rodekyll]

Viruses are gotten by installing flash updates.  They trick you into installing them by looking very much similar (but not identical) to a legit update.  If

the adobe logo isn't on the notice (often a similar but different logo is on the fake)

the download notice came at some point other than computer start-up, such as while visiting a web page (to view this video you need an update to the flash player.  Click here to download.  . .)

the download doesn't happen from the adobe website

There are odd sentence structures, word choices, and/or misspellings in the notice

then it might not be actual adobe flash.

Viruses come in the flash video as well.  Hackers embed the code, and when the video is run, flash hatches the virus.

porn is shot full of flash viruses, just like real-life whores.


It's a big enough problem that the advice to remove it is good.  Think about it -- when was the last time you NEEDED to watch a video?  My personal policy is to not install flash, not click unexplained links on this (or any other) forum or email, and to not click any links to u-toobe-type videos.  I help enforce my rule by not having speakers on my computer.  I often get 'flash error -- flash player not installed'  errors when looking at news stories and they're trying to auto-run a video (I'm just wanting to read the text like a newspaper).

When I am compelled to watch a training video or other required viewing for work I use a sacrificial laptop.  It has nothing but a raw operating system -- no other programs, email, etc.  The duty generally falls to my macbook, since it sucks at everything except entertainment and reloads easily when destroyed.

[jreagan]

When any website offers/suggests that you update something, never do it from the offered location.  Always, get out of the browser, go to Adobe.com, Oracle.com, etc. and do your update from there.

[Stevex]

Does uninstalling / disabling Flashplayer remove the threat?
If not, will a security scan, in my case Kaspersky Internet Security 2015, pick up the threat?

[Mayor_of_BBQ]

This seems complicated, what will happen if I dont?  If I have a Chromebook do I have Flash??

[rodekyll]

Does uninstalling / disabling Flashplayer remove the threat?
If not, will a security scan, in my case Kaspersky Internet Security 2015, pick up the threat?

If you uninstall before anything bad happens you remove that vulnerability.  If you remove it after the fact it's just busy work -- has no effect on the infection.  I don't know if your Kapersky will find it or not.  Some of these new generation viri don't plant code, they just change the lines in the system registry (or in a mac -- the preferences files) or other configuration files to do their business.  Check with the kapersky website for their statement about it.

Mayor -- what happens if you don't what? 

Nobody can tell if your chromebook (or any other book) has it or not without looking.  So LOOK.  It's not rocket surgery.  It's not complicated.  It's there or it's not.

[Mayor_of_BBQ]

If you uninstall before anything bad happens you remove that vulnerability.  If you remove it after the fact it's just busy work -- has no effect on the infection.  I don't know if your Kapersky will find it or not.  Some of these new generation viri don't plant code, they just change the lines in the system registry (or in a mac -- the preferences files) or other configuration files to do their business.  Check with the kapersky website for their statement about it.

Mayor -- what happens if you don't what? 

Nobody can tell if your chromebook (or any other book) has it or not without looking.  So LOOK.  It's not rocket surgery.  It's not complicated.  It's there or it's not.

What am I looking for a virus or a flash??  I wouldnt know where to begin, my friend.. I dont know what either of those look like.  If it can't be done in 1-2 clicks, I dont know how to do it.  I'll just roll the dice, I recokon... what's the worst that could happen

[oldbike54]

 You will develop chronic stinkfoot , and BBQ won't taste right ever again 

   Dusty

[Stevex]

This seems complicated, what will happen if I dont?  If I have a Chromebook do I have Flash??

Chrome uses Flash by default, you have to disable it if you use Chrome.
However, Chrome also automatically updates Flash and when I checked Adobe's website Chrome had already updated the vulnerable version of Flash on my laptop...I still disabled it tho'.

To disable Flash using Chrome, type 'chrome:plugins' into the address bar.
You'll get a list of plugs ins, scroll down to Flashplayer and tick the 'disable' box.

[slowmover]

MY BRAIN HURTS!!

[Mayor_of_BBQ]

You will develop chronic stinkfoot , and BBQ won't taste right ever again 

   Dusty

I once drank whisky that gave me drizzlin shits and the jake leg

[ITSec]

To the question of whether the latest Flash update solves the problem - NO. There are multiple vulnerabilities being discovered as a result of the original attack on the hacker group, and even the latest update is incomplete. Flash version 209 (actually, 18.0.whatever.209) handles all current known issues as of this afternoon, but the other shoe is still in mid-drop.

And no, porn is not safe to look at - but it's not malware you have to worry about! 

[redrider90]

I have all my flash folders locked. Not only does that prevent attacks but no sites can attach cookies within flash on my computers. I run Macs and it is easy to lock all the folders and prevent any access to flash. And all video works because I have it set up to say I am allowing content to my computer when in fact the folder is locked.
This is what the folder looks like when it is checked off in the "locked box"?


And this is what my macromedia file looks like in library (finder). Notice at the bottom of each folder there is a little "x" that means the folder is locked.
[URL=http://s1318.photobucket.com/user/redrider901/media/Screen%20Shot%202015-07-15%20at%201.11.31%20PM_zpsmcsjglbl.png.html]

[ITSec]

While locking folders will prevent changes to Flash code on your Mac, it will NOT necessarily prevent these exploits from working. Locking the folder prevents changes to the STORED file, not to the code loaded into memory when the executable is activated. The exploits use the Flash code as it is held in memory, take advantage of a flaw, and then use that flaw to allow the loading and running of code of their choice.

Locked files are an excellent concept - they just aren't enough in this case.