“Right now, the bad guys are really enjoying this,” said Jérôme
Segura, a security researcher at Malwarebytes, the security
company that uncovered the attack. “Flash for them was a godsend.”
The scheme, which Yahoo shut down on Monday, worked like this:
A group of hackers bought ads across the Internet giant’s
sports, news and finance sites. When a computer — in this
case, one running Windows — visited a Yahoo site, it
downloaded malware code.
The sooner we completely eliminate the use of Flash, the better. Just get rid of it.