The Mozilla Foundation seems to be making radical decisions about the security of Firefox users. It has decided to temporarily block Flash in Firefox in response to recent exploits that they leaked by Hacking Team hack.
So Firefox started blocking the current version of Flash by default by Monday. All versions of Adobe software, including the latest version, have been added to the browser blacklist.
Users can choose to ignore this warning and activate Flash but at their own risk.
The Hacking Team files leaked last weekteam revealed that the controversial Italian company used Flash exploits to spy on its targets.
Adobe updated one of these vulnerable σημεία την περασμένη εβδομάδα, αλλά υπάρχουν δύο ακόμα zero-day που παραμένουν χωρίς ενημέρωση. Το CVE-2015-5122 και το CVE-2015-5123 είναι δύο τρωτά σημεία που επιτρέπουν κρίσιμα code injections σε όλες τις πλατφόρμες (Windows, Macintosh και Linux).
Adobe has promised updates later this week (probably already today), but Mozilla has decided to act pro-actively before launching.
Mark Schmidt, head of Mozilla's Firefox support team, announced the blocking of Flash on Twitter before clarifying from other sources that the Mozilla Foundation has decided on a temporary restraint pending updating.
New Facebook security chief Alex Stamos went further this week, saying he wanted to "set a date to stop Flash altogether," indicating how concerned he was about the app. Also note that YouTube has already reduced support for Flash.
Flash is used in many browsers and by many websites for playback video, αλλά η συγκεκριμένη τεχνολογία φαίνεται να είναι ο αγαπημένος στόχος των hackers.
Security experts occasionally recommend uninstalling Flash and Java browser plug-ins into systems that do not require them.