Adobe Animate

[Jorge-Vieira]

Adobe kills Flash, meet Adobe Animate

~While Adobe Flash became the main 'victim' of HTML5's stellar launch, this company has finally decided to ditch the Adobe Flash Professional branding and name, opting now for Adobe Animate as a main product.





Reported by Gizmodo as found in a recent Adobe announcement regarding Animate CC, it seems like the management at Adobe wants to let its long-standing Flash name die off without too much publicity.

With Adobe Flash Professional now no longer around, the new Animate program logically focuses on HTML5 and is set to hit the public by January 2016. With Flash no longer the internet standard, users may feel free to disable it on all systems.

Noticia:
http://www.tweaktown.com/news/48747/...ate/index.html

[Jorge-Vieira]

Flash Player Survived 2015 with Over 300 Bug Fixes; 2016 to Finally Kill It?

Flash Player received a patch for over nineteen bugs from Adobe this week. Closing the year with an out-of-band emergency update, the year was full of fixes that tried to help users run Flash as securely as possible, but completely failed.

It is not a new story that Flash Player is plagued with security loopholes and vulnerability troubles. Thanks to its nonstop bugs, Flash hasn’t only supported some major hacking attempts, but has also managed to stay unsecure even after so many of the organizations and individuals have helped Adobe in identifying and patching the bugs in the past year alone. The 18-year old software with reportedly over 1.3 billion installations has certainly run its time, but refuses to die with grace, while it still can.
The last year (what a fun it is to say this!) saw over 316 bug fixes coming to Adobe Flash Player, an average of 6.1 per week. Borrowing the words of Michael Horowitz at Computerworld, “think of it as a bug fix every day, but taking Sundays off to rest.” Well then, thanks to Adobe for giving us at least a day off every week. Horowitz reports that Flash Player saw over 12 bugs a month in 2014; in 2015 we received fixes for over 26 bugs a month which confirms that things are getting worse. At the end of the year, it was even more serious as Adobe sent fixes for 113 bugs in Q4 2015, averaging at 1.5 bug per day.
Advertisements


Will 2016 be the end of Flash Player?

Several of our readers have commented that they have stopped using Flash; however, the software is still arguably going strong. Some of the major companies announced to stop supporting Flash in the last year. Facebook dropped Flash in support of HTML5, saying that, “it is time for Adobe to announce the end-of-life date for Flash and to ask the browsers to set killbits on the same day.” Prompted by the security risks, YouTube and Mozilla also blocked Flash API, embeds and plug-ins, with YouTube taking up HTML5 Player instead.
The only positive bit coming out of this whole debacle in 2015 is that the software is slowly losing its usage. According to W3Techs, Flash Player’s use dropped from 28.5 percent in 2010 to less than 10 percent in 2015. It will be only wise to either uninstall Flash altogether or use it only when needed on those 10 percent of the sites. While Google’s Chrome and Windows Edge browsers automatically update the software with any new bug fixes, after the very latest patch was released, it took a while for both these browsers to catch up with the patch. If you have Flash installed, you can always check at this link if it is up-to-date and pray that the updated version manages to keep your data and systems secure.
– Thanks for the tip, Jesse.

Noticia:
http://wccftech.com/flash-player-survived-2015-with-316-bug-fixes/#ixzz3w4koitqQ


Espero bem que 2016 marque o fim deste enorme buraco negro que é o Flash!!!!

[Jorge-Vieira]

Adobe Patches Actively Exploited Zero-Day Flaws in Flash Player

On Tuesday, Adobe released a security advisory warning of a critical vulnerability (CVE-2016-1019) in Flash that is being exploited in the wild. The advisory claimed that the flaw exists in Flash Player 21.0.0.197 and earlier versions for Windows 7, XP, Mac, Linux and Chrome OS. Adobe updated the advisory later on to admit that Windows 10 is also among the operating systems being exploited by this zero-day flaw.

Adobe is aware of reports that CVE-2016-1019 is being actively exploited on systems running Windows 10 and earlier with Flash Player version 20.0.0.306 and earlier. A mitigation introduced in Flash Player 21.0.0.182 currently prevents exploitation of this vulnerability, protecting users running Flash Player 21.0.0.182 and later.

The vulnerability is a memory corruption flaw that can be exploited for remote code execution. The company has now released a Flash Player update to patch this zero-day vulnerability that has been leveraged by criminal hackers to deliver malware and ransomware on Windows 10 and earlier operating system versions. Proofpoint (one of the research firms responsible for detection of this previously unknown vulnerability) reported that the exploit has been used by hackers to deliver various threats, including Cerber and Locky ransomware, using the Magnitude exploit kit.

Advertisements

FireEye, another firm acknowledged by Adobe for detection of this flaw, said that some of the layout and functionality of this exploit is similar to exploits leaked in the Hacking Team data breach.
Adobe’s Flash Player has already received three security updates this year, including an emergency patch that was released last month to patch 23 vulnerabilities, including an active vulnerability that allowed attackers to take control of the affected systems. February’s patch had fixed 22 memory corruption flaws that could have been exploited for arbitrary code execution. Adobe has itself recommended developers to ditch Flash in favor of HTML5, but it seems unlikely that this bug-magnet will die anytime soon.
Update Flash Now! Adobe Patches 77 Critical Vulnerabilities in Flash Player




Users are advised to visit Adobe to install the updated versions of Flash Player on their Windows, OS X, Linux, and Chrome OS systems.

Noticia:
http://wccftech.com/adobe-patches-actively-exploited-flash-zero-day-flaws/#ixzz45Enmwnns


É só buracos...

[Jorge-Vieira]

Adobe’s Flash tester behind the times

Chrome is more up-to-date

There has been a cock-up with Flash’s updates system which has left Chrome with a newer version of Flash than Adobe thinks is the latest.

Adobe released 24 Flash Player bug fixes. Some were so serious that you had to be insane not to want to upgrade. However when you update Chrome you are told that you are running 21.0.0.216 which is newer than the 21.0.0.213 that Adobe said was the latest.
Computerworld found this a little odd and asked Google and was told that they had made updates and minor bug fixes to version 21.0.0.213 and that 21.0.0.216 was indeed the latest and greatest.
So this means that Adobe's tester page behind the times along with their last Security Bulletin.
The Google spokesperson added that it was in the process of updating the Flash Player used by Chrome on Windows, OS X and Linux. The update is being deployed "independently of Chrome via the component updater."

Noticia:
http://www.fudzilla.com/news/40427-a...hind-the-times