Hackers use Flash bug to target GMail
07/Jun/11 17:40 Filed in: Updates | Useful or interesting
Adobe has confirmed that a bug it patched over the weekend is being used by hackers to target Google's GMail users.
According to a Macworld report, 'Cross-site scripting flaws are often used by identity thieves to hijack usernames and passwords from vulnerable browsers. In this case, browsers themselves are not targeted; rather, attackers are exploiting the Flash Player browser plug-in, which virtually every user has installed. Adobe said that Google reported the Flash Player flaw to its security team.'
Adobe strongly recommends all users on all platforms with all browsers using Flash to update their Flash plugins. This also applies to Google Chrome users, which ships with Flash plugin already incorporated.
[ As a side-note, this is one of the reasons why Apple doesn't allow Flash on its iOS devices - the Flash technology is a plugin to the web browser, not a stand-alone application, and it would mean Apple would have to release a whole new iOS update each time Adobe bug-fixed or security-fixed their plugin. ]
Do you have the latest version of Flash installed? Check here!
According to a Macworld report, 'Cross-site scripting flaws are often used by identity thieves to hijack usernames and passwords from vulnerable browsers. In this case, browsers themselves are not targeted; rather, attackers are exploiting the Flash Player browser plug-in, which virtually every user has installed. Adobe said that Google reported the Flash Player flaw to its security team.'
Adobe strongly recommends all users on all platforms with all browsers using Flash to update their Flash plugins. This also applies to Google Chrome users, which ships with Flash plugin already incorporated.
[ As a side-note, this is one of the reasons why Apple doesn't allow Flash on its iOS devices - the Flash technology is a plugin to the web browser, not a stand-alone application, and it would mean Apple would have to release a whole new iOS update each time Adobe bug-fixed or security-fixed their plugin. ]
Do you have the latest version of Flash installed? Check here!