Hackers Exploit Adobe Flash Vulnerability in Yahoo Ads

Dino Grandoni, writing for the NYT Bits blog:

“Right now, the bad guys are really enjoying this,” said Jérôme Segura, a security researcher at Malwarebytes, the security company that uncovered the attack. “Flash for them was a godsend.”

The scheme, which Yahoo shut down on Monday, worked like this: A group of hackers bought ads across the Internet giant’s sports, news and finance sites. When a computer — in this case, one running Windows — visited a Yahoo site, it downloaded malware code.

The sooner we completely eliminate the use of Flash, the better. Just get rid of it.

Tuesday, 4 August 2015