Neowin: Firefox 69 will have Flash disabled by default

Neowin: Firefox 69 will have Flash disabled by default. “According to Mozilla’s plugin roadmap, the firm planned to disable Flash by default in Firefox sometime this year. Now, a new bug filing has revealed that the plugin will be disabled as of Firefox 69 which is due for release on September 3, 2019. Mozilla will disable Flash beginning with the Nightly builds before it works its way down to the Stable channel.”

The Register: Adobe Flash zero-day exploit… leveraging ActiveX… embedded in Office Doc… BINGO!

The Register: Adobe Flash zero-day exploit… leveraging ActiveX… embedded in Office Doc… BINGO! . “Stop us if you’ve heard this one before: An Adobe Flash zero-day vulnerability is being actively targeted in the wild to hijack victims’ Windows PCs. Researchers with Gigamon Applied Threat Research (ATR) and Qihoo 360 uncovered a phishing campaign that exploits CVE-2018-15982, prompting Adobe to today release an out-of-band emergency update to patch up the flaw.”

The Register: Did you hear? There’s a critical security hole that lets web pages hijack computers. Of course it’s Adobe Flash’s fault

The Register: Did you hear? There’s a critical security hole that lets web pages hijack computers. Of course it’s Adobe Flash’s fault. Deep sigh. “Adobe has emitted software updates to address a critical vulnerability in Flash Player for Windows, Mac, and Linux. PC owners and admins will want to upgrade their copies of Flash to version 31.0.0.153 or later in order to get the patch – or just dump the damn thing all together.”

Paloalto Networks: Fake Flash Updaters Push Cryptocurrency Miners

Paloalto Networks: Fake Flash Updaters Push Cryptocurrency Miners. “In most cases, fake Flash updates pushing malware are not very stealthy. In recent years, such imposters have often been poorly-disguised malware executables or script-based downloaders designed to install cryptocurrency miners, information stealers, or ransomware. If a victim runs such poorly-disguised malware on a vulnerable Windows host, no visible activity happens, unless the fake updater is pushing ransomware. However, a recent type of fake Flash update has implemented additional deception.”

Stop us if you’ve heard this one: Adobe Flash gets emergency patch for zero-day exploit (The Register)

The Register: Stop us if you’ve heard this one: Adobe Flash gets emergency patch for zero-day exploit . “Adobe has kicked out an out-of-band update for a security vulnerability in Flash – after learning the bug was being actively exploited in the wild by hackers to hijack PCs. The Photoshop giant said today its Flash Player 30.0.0.113 update should be a top installation priority for Mac, Windows, and Linux systems.”

Bleeping Computer: Flash Used on 5% of All Websites, Down From 28.5% Seven Years Ago

Bleeping Computer: Flash Used on 5% of All Websites, Down From 28.5% Seven Years Ago. YAAAAAAAY! “Only 4.9 percent of today’s websites utilize Flash code, a number that has plummeted from a 28.5 percent market share recorded at the start of 2011. The number, courtesy of web technology survey site W3Techs, confirms Flash’s decline, and a reason why Adobe has decided to retire the technology at the end of 2020.”