Establishing Digital Trust: Don't Sacrifice Security for Convenience
Apple recently announced that it has begun blocking use of outdated versions of Adobe Flash Player in Safari.
"In order to block older versions of Flash, Apple has updated its 'Xprotect.plist' file so that any versions that come before the current one (version 11.6.602.171) cannot be used on a Mac," writes Ars Technica's Jacqui Cheng. "Users who have older versions of Flash installed will be greeted with an alert that says 'Blocked plug-in,' and Safari will prompt the user to update to a newer version."
"Apple has previously used XProtect to block older Java versions, but this is believed to be the first time it has used it to block older Flash versions," The H Security reports.
"Adobe issued a Flash Player security update Feb. 26, warning that two vulnerabilities are being actively targeted in the wild," notes CRN's Robert Westervelt. "Users are tricked into visiting malicious Web pages attempting to exploit the coding errors."https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
"Browser makers have been tightening control over older Flash plugins, which, like Java, remain a popular target for attacks on the web," writes ZDNet's Liam Tung. "Chrome and IE 10 for Windows 8 automatically update Flash to the latest version, and Mozilla has implemented 'Click to Play' in Firefox, which prevents all plugins from launching automatically except the latest version of Flash."