The Mozilla foundation seems to be making radical decisions about the security of its users Firefox. It has decided to temporarily block Flash in Firefox in response to the recent exploits leaked by the Hacking Team hack.
So Firefox started blocking the current one version of Flash by default from Monday. All versions of Adobe software, including the latest version, have been blacklisted in the browser.
Users can choose to ignore this warning and activate Flash but at their own risk.
The Hacking Team files that leaked last week revealed that the controversial Italian company was using Flash exploits to spy on its targets.
Adobe has reported one of these vulnerabilities last week, but there are two more zero-days that remain unannounced. CVE-2015-5122 and CVE-2015-5123 are two vulnerabilities that allow critical code injections on all platforms (Windows, Macintosh, and Linux).
Adobe has promised updates later this week (probably already today), but Mozilla has decided to act pro-actively before launching.
Mark Schmidt, head of Mozilla's Firefox support team, announced the blocking of Flash on Twitter before clarifying from other sources that the Mozilla Foundation has decided on a temporary restraint pending updating.
Facebook's new chief security officer Alex Stamos went further this week, saying he wants to "set a date to stop Flash completely," showing how concerned he is about the app. We should also mention that the YouTube has already dropped Flash support.
Flash is used in many browsers and by many websites to displaytreatment βίντεο, αλλά η συγκεκριμένη τεχνολογία φαίνεται να είναι ο αγαπημένος στόχος των hackers.
Security experts occasionally recommend uninstalling Flash and Java browser plug-ins into systems that do not require them.