L
LabZero
Thread author
The spread of data stolen in HackingTeam allowed to bring out two more security vulnerabilities in Adobe Flash that allow an attacker to take control of target computers simply by visiting a link (one of the favorite techniques of HackingTeam).
These two new flaws have not for now a corrective update!
Adobe is racing to create and deploy the update to correct these vulnerabilities, but meanwhile, cybercriminals are already using at least one of them, so it is highly recommended that you uninstall, disable or block Flash to run automatically. Among other things, probably will not feel the lack; Indeed, you'll notice that many sites will load faster because Flash content (usually advertisements) are not read.
The Flash flaws are labeled CVE-2015-5122 and -5123 and are present in versions of Windows, Linux and OS X Adobe plug-in. Adobe has said that these new flaws will be corrected next week. Until then, use more caution than usual, even on good reputation because many attacks come from Flash advertising, which are not handled by the same sites but are submitted by ad networks, that are targeted by cybercriminals.
Update 2015.07.13
Regards Klipsh
These two new flaws have not for now a corrective update!
Adobe is racing to create and deploy the update to correct these vulnerabilities, but meanwhile, cybercriminals are already using at least one of them, so it is highly recommended that you uninstall, disable or block Flash to run automatically. Among other things, probably will not feel the lack; Indeed, you'll notice that many sites will load faster because Flash content (usually advertisements) are not read.
The Flash flaws are labeled CVE-2015-5122 and -5123 and are present in versions of Windows, Linux and OS X Adobe plug-in. Adobe has said that these new flaws will be corrected next week. Until then, use more caution than usual, even on good reputation because many attacks come from Flash advertising, which are not handled by the same sites but are submitted by ad networks, that are targeted by cybercriminals.
Update 2015.07.13
Regards Klipsh