Adobe issues yet another ‘Emergency’ Flash Player security update to thwart ransomware attacks

“Adobe has issued Flash Player security updates for OS X, Windows, Linux, and Chrome OS to address “critical vulnerabilities that could potentially allow an attacker to take control of the affected system” by way of ransomware,” Joe Rossignol reports for MacRumors.

“In this particular “CERBER” attack (via Reuters), affecting Flash-based advertisements, attackers have reportedly demanded between around $500 and $1,000, to retrieve the encrypted files,” Rossignol reports. “Adobe says it is aware of Windows 10 being ‘actively exploited’ by this attack, but it is unclear if any Macs have actually been victimized.”

“Adobe recommends that Flash Player users on Mac update to version 21.0.0.213 through the update mechanism within the software when prompted, or by visiting the <a href="https://get.adobe.com/flashplayer/" target="_new"Adobe Flash Player Download Center,” Rossignol reports. “Adobe Flash Player installations within Chrome, Microsoft Edge, and Internet Explorer for Windows 8.1 or later should be automatically updated with the latest version of each browser.”

Read more in the full article here.

MacDailyNews Take: Flash must die.

SEE ALSO:
Adobe Flash has a huge security hole that’s being exploited right now – March 11, 2016
Google will stop running Flash display ads on January 2, 2017 – February 10, 2016
Adobe’s bloated, insecure Flash must die – July 15, 2015
Apple CEO Steve Jobs was right about Adobe’s Flash – May 2, 2011
Steve Jobs posts rare open letter: Thoughts on Flash – April 29, 2010

[Thanks to MacDailyNews Reader “Fred Mertz” and “MacPatty” for the heads up.]

8 Comments

  1. Yes flash should die. I look down on all the websites which are Flash dependent. Also, I have click to flash installed, and I keep it up to date.

    Flash and Java some of the worst mistakes on the web.

  2. Can this non-sense be resolve after all?

    Adobe is clearly out. By buying Macromedia, back then, they became the prehistorical tech company themself. Without vision and poor short terms goal, they are an embarrasment to the modern tech industy.

    They knowl it and this is why they took all their believers in hostage with their CC plan and no other options on the shelve…

    Boy I hate this compagny.

  3. I have abandoned Flash a long time ago and now spend a few minutes each week writing emails to companies whose websites I routinely visit that still use Flash. I am trying to hasten the end of Flash with each email requesting that they move over to HTML5 and get rid of Flash.

  4. The ransomware exploits a whole version number older version of Adobe Flash on Windows 10. For reasons of which I’m ignorant, apparently certain people are stuck using the older version due to compatibility. Anyone already up-to-date with recent versions of Adobe Flash (v21.x) has no fear.

    But it can’t hurt to double-check that you’re up to date, if you’re stuck using this decrepit Adobe crapware.

    https://get.adobe.com/flashplayer/

    From Adobe:

    Summary

    Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and ChromeOS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

    Adobe is aware of reports that CVE-2016-1019 is being actively exploited on systems running Windows 10 and earlier with Flash Player version 20.0.0.306 and earlier. Please refer to APSA16-01 for details.

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.