Posted tagged ‘flash’

Adobe Fixes Clickjacking Flaw in Flash

October 21, 2011

As you probably know, clickjackers often use Adobe Flash to highjack computer cameras. This allows them to see into your home, take pictures, and pretty much spy on anyone in the world with an Internet connection. Your best defense: a piece of tape placed strategically over your camera. You can’t go wrong with the analog solution. Of course, then you have to find a way to deal with the clickjack that activates your computer’s microphone as well as your webcam. Those tricky scam artists are always one step ahead of decent folk.

Adobe has announced, however, that it has fixed the flaw in Flash that allowed clickjackers to activate microphones and webcams.

Before the latest Flash update, clickjackers could have their way with your computer by luring you into a simple trap. Often in the form of a game, the scammers just had to convince you to click an invisible frame on your screen. That would activate Flash’s manager and allow them to take control.

Obviously this is a good thing for anyone concerned about computer security. You kind of have to wonder how many unsavory online photographs were taken without permission. A quick clickjack, a little Photoshop, and boom! You’ve got yourself a male enhancement ad.

Of course, this might bum a few people out. After all, the Internet was obviously designed to collect naked photographs of every person in the world. Now that Adobe has managed to improve its software, how will humanity ever reach such a lofty goal?

 

 

Adobe security updates to prevent clickjack attacks

August 17, 2010

Adobe announced last week that it would release six critical security updates for Flash. Five of the updates are designed to prevent memory corruption. The sixth targets vulnerabilities that could make clickjacks possible. This week, the company plans to release more patches that will improve security for Reader and Acrobat.

Hackers have long focused on Adobe’s Flash software to create clickjacks that can cause computers to run operations without their user’s knowledge. Many of the clickjacks have hidden links embedded on top of images and links that appear benign. When the link is clicked, however, the user has actually clicked on the invisible frame, thus giving permission for an unknown application to start running.

This has allowed clickjackers to perform a variety of tasks. Some have even created clickjack scripts that take over web cams. This allows the hacker to film people using their computers, a spooky prospect that has led many people to keep their cameras unplugged or covered except when in use.

Some clickjacks also release viruses, trogans, and other types of malware. Once your computer is infected, the viruses can steal information or turn the computer into a slave bot that performs operations for the hacker. This slows down you internet connection and can even implicate you in illegal actions.

It is important to keep Adobe programs up to date to help protect your computer form clickjack attacks. It is a continuous process, so you will have to continue updating the software. Chances are that within a few months, a savvy hacker will find a way to counter the latest patches. Adobe will then retaliate with a new patch that addresses the most current issue.