Adobe to Kill 'FLASH', but by Just Renaming it as 'Adobe Animate CC'

[Viking]

Content source

https://thehackernews.com/2015/12/adobe-flash-animate-cc.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News+-+Security+Blog%29&_m=3n.009a.1130.zf0ao05yu5.naj

Adobe to Kill 'FLASH', but by Just Renaming it as 'Adobe Animate CC'
Tuesday, December 01, 2015 Swati Khandelwal




Adobe is Finally Killing FLASH, but not actually.

Adobe Flash made the Internet a better place with slick graphics, animation, games and applications, but it never stood a chance of surviving in the same world as HTML5.

Of course, Flash has plagued with various stability and security issues, which is why developers had hated the technology for years.

So, now it's time to say GoodBye to Adobe Flash Professional CC, and Welcome Adobe Animate CC.




Meet the new Flash, Adobe Animate CC, same as the old Flash, and still insecure mess.

Adobe Animate CC Embraces HTML5

Adobe has officially announced that "over a third of all content created in Flash Professional today uses HTML5," so the company is acknowledging the shift with the new name.

Adobe Animate CC — Adobe's Premier Web animation tool for developing HTML5 content.

Yes, that's what the company has the focus on.

The application – mostly looks like an update to the Flash Professional software – will still support Adobe Flash (SWF) and AIR formats 'as first-class citizens,' along with other animation and video formats, including HTML5 canvas, 4K and WebGL output.

Adobe Animate CC is the Same Old Flash

When Adobe Animate CC launches in January 2016, it will bring features like easy access to high-quality stock art, new vector art brushes, as well as the ability to rotate the canvas 360° from any pivot point. Sounds exciting!

What it won't bring is:

• Fix for the number of security issues that have plagued Adobe Flash for years

The platform has a new name, but the development tool lives on.

So, Flash isn't actually dead; it's just renamed.
"Adobe's strategy is to make money regardless of what happens in the market," says Jeffrey Hammonds, principal analyst at Forrester Research. "They understand that there is a slow transition to HTML5 going on."
"At some point you have to embrace the change," Hammond adds. "The rebranding is the visible sign of that, but the internal focus on supporting the technologies like HTML5 has been going on a while."
So, hiding Flash behind a different name doesn't solve the stability and security issues. In fact, a recently uncovered flaw in the software was so nasty that the only way to get rid of it was to completely uninstall Flash Player.

Still think Flash is dead or very much alive? Hit the comments below.

 

[upnorth]

A very simple and smart PR campaign that works and many companies all around the world done this because the previous name was giving everyone a shiver down there spine but not the happy joyful one.

I have no doubt that HTML5 will kill Flash in the end but the sad part is that it takes too long...

 

[LabZero]

Flash now is vulnerable and then we think to be more securely using HTML 5 but...

Unfortunately if an attacker can control the input channel of a web application, and then he manages to inject arbitrary HTML code into a web page, it creates an Injection Flaw.

In case a website was vulnerable to HTML Injection, he could use a framework to exploit this weakness and enter in the internal network through a framework payload (Javascript script) for example with a bookmark link using a social engineering attack.

HTML 5 has introduced new elements such as: localStorage.
With this feature, HTML Injection can be persistent (stored), because if an attacker was able to carry out the attack, the payload would be stored on the client storage and executed without being re-injected, all the times when the web page is loaded.

HTML Injection - OWASP