I received the following Email today and I think that
you should act on it for safety.
Mike.
Hacker attacks usually result in disaster.
But when hackers recently attacked an Italian security company,
it seems that they found more than they bargained for.
The firm produce surveillance software to law enforcement agencies
that allows them to monitor Internet users.
It seems that the surveillance software they produce is not too far
removed from the malware that the criminal hackers produce and probably
uses some of the same techniques to infiltrate target PCs.
We know that since, after the attack, the hackers that broke into the firm
posted 400GB of program code and other data they had stolen online.
Amongst the things they leaked was a code that made use of a previously
unknown security bug in Adobe Flash, to take over computers with the
Flash browser plug-in installed.
The problem affects Flash running in Internet Explorer, Firefox, Chrome and
Safari browsers and all versions from Flash Player 9 to the latest version, 18.0.0.194.
A hacker can exploit the problem to run any software they like on your PC.
It looks like the Italian company were using the problem to run their surveillance
software on the computers they were monitoring and with details of the problem
posted on the Internet, it won't be long before criminal hackers start to use it to
spread malware.
So, it looks like it is finally time to get rid of Adobe Flash. Most interactive sites
these days can work without Flash – you no longer need it to watch YouTube
videos, for example.
If you have Adobe Flash installed on your PC, the best option is just to remove it.
The number of security problems found in Flash on an almost monthly basis, means
that having it installed on your PC is asking for trouble.
If there are sites you visit which still make use of Flash, then you should install a
Flash blocker in your browser.
This will make sure that Flash cannot be run by default but, if a particular site
requires Flash, you can enable it.
Internet Explorer doesn't not have a Flash Blocker plug-in but you can achieve
the same thing by pressing Alt, then clicking Tools > Manage Addons. Double-click
Shockwave Flash, then click Remove all sites and click OK.
If you are keeping Flash on your PC, you need to upgrade to the latest version,
which fixes this problem (although there will be more in future).
you should act on it for safety.
Mike.
Hacker attacks usually result in disaster.
But when hackers recently attacked an Italian security company,
it seems that they found more than they bargained for.
The firm produce surveillance software to law enforcement agencies
that allows them to monitor Internet users.
It seems that the surveillance software they produce is not too far
removed from the malware that the criminal hackers produce and probably
uses some of the same techniques to infiltrate target PCs.
We know that since, after the attack, the hackers that broke into the firm
posted 400GB of program code and other data they had stolen online.
Amongst the things they leaked was a code that made use of a previously
unknown security bug in Adobe Flash, to take over computers with the
Flash browser plug-in installed.
The problem affects Flash running in Internet Explorer, Firefox, Chrome and
Safari browsers and all versions from Flash Player 9 to the latest version, 18.0.0.194.
A hacker can exploit the problem to run any software they like on your PC.
It looks like the Italian company were using the problem to run their surveillance
software on the computers they were monitoring and with details of the problem
posted on the Internet, it won't be long before criminal hackers start to use it to
spread malware.
So, it looks like it is finally time to get rid of Adobe Flash. Most interactive sites
these days can work without Flash – you no longer need it to watch YouTube
videos, for example.
If you have Adobe Flash installed on your PC, the best option is just to remove it.
The number of security problems found in Flash on an almost monthly basis, means
that having it installed on your PC is asking for trouble.
If there are sites you visit which still make use of Flash, then you should install a
Flash blocker in your browser.
This will make sure that Flash cannot be run by default but, if a particular site
requires Flash, you can enable it.
Internet Explorer doesn't not have a Flash Blocker plug-in but you can achieve
the same thing by pressing Alt, then clicking Tools > Manage Addons. Double-click
Shockwave Flash, then click Remove all sites and click OK.
If you are keeping Flash on your PC, you need to upgrade to the latest version,
which fixes this problem (although there will be more in future).
... guess I'll just rough it for now Phil...
