Adobe Flash Blacklisted by Firefox for Security Flaws
In the wake of three zero-day exploits for Adobe Flash, Firefox has decided to blacklist the current version in an attempt to keep users safe. The vulnerabilities could cause a crash and allow an attacker to take over an infected system. These affected all versions of Flash on all operating systems, so Firefox boldly blacklisted the entire extension.
Adobe responded by rolling its new version, which will need to be manually updated via their website if you are a Firefox user. Mozilla has also announced that it will by default block all versions of Flash in Firefox. All Flash content will be click-to-play from now on.
Flash is slowly being phased out, with sites like YouTube already using HTML5 instead of Flash. Adobe is rolling out a patch this week, and has not been vocal regarding when Flash will reach end of life. They have, however, stopped support for mobile development. Google has also announced that it will block auto-playing Flash elements. Facebook and Apple have also voiced their concerns over Flash and its end-date.
The newest version is not yet being blocked by default as the supposed security concerns have been patched. If you are using an older version you will need to enable it manually in Firefox. Flash is widely used across the web for playing videos, however it is increasingly vulnerable to exploit kits, drive-by download attacks and cyberspies. Some experts are urging users to uninstall Flash and Java if it’s not required on your system.