Flash Archives – Gridinsoft Blog Welcome to the Gridinsoft Blog, where we share posts about security solutions to keep you, your family and business safe. Fri, 31 May 2024 00:48:41 +0000 en-US hourly 1 https://wordpress.org/?v=90291 200474804 Microsoft will permanently remove Adobe Flash Player from Windows in summer 2021 https://gridinsoft.com/blogs/microsoft-will-permanently-remove-adobe-flash-player/ https://gridinsoft.com/blogs/microsoft-will-permanently-remove-adobe-flash-player/#respond Wed, 05 May 2021 16:44:58 +0000 https://blog.gridinsoft.com/?p=5447 According to manufacturers’ elaborate plan, since beginning of 2021 support for Adobe Flash Player was finally discontinued. This means that Adobe has officially stopped distributing Flash Player and its updates, and browser developers have stopped supporting Flash plugins. In addition, an emergency “switch” was introduced into the Flash Player code in advance, which prevents the… Continue reading Microsoft will permanently remove Adobe Flash Player from Windows in summer 2021

The post Microsoft will permanently remove Adobe Flash Player from Windows in summer 2021 appeared first on Gridinsoft Blog.

]]>
According to manufacturers’ elaborate plan, since beginning of 2021 support for Adobe Flash Player was finally discontinued. This means that Adobe has officially stopped distributing Flash Player and its updates, and browser developers have stopped supporting Flash plugins.

In addition, an emergency “switch” was introduced into the Flash Player code in advance, which prevents the launch of any Flash content, starting from January 12, 2021.

Last year, in preparation for the final end of support for Flash Player, Microsoft created update KB4577586 to remove Adobe Flash from all versions of Windows 8, 10 and Windows Server and prevent it from being reinstalled.

At that time, the update was only available through the official catalog and could not be removed after installation. However, the update was optional, although it was forcibly rolled out in February to some Windows 10 machines.

In general, the company promised that in early 2021 this update will be distributed via WSUS and Windows Update and will be made mandatory. On Microsoft’s blog can be found a post that reveals further plans regarding KB4577586.

Starting June 2021, Microsoft plans to include KB4577586 as part of optional Windows 10 cumulative preview updates for Windows 10 1809 and later.

In July, KB4577586 will be included in the required cumulative update packages for Windows 10 1507 and later, as well as for Windows Server 2012, Windows 8.1, and Windows Embedded 8 Standard.Microsoft representatives said.

It also became known that in Windows 21H1, the preview version of which will become public this month, the KB4577586 update will be installed automatically, that is, the Adobe Flash Player plugin will be automatically removed.

It is unlikely that the final removal of Flash Player will be noticed by users, because now it is actually useless and cannot be used to display content.

However, let me remind you that with the shutdown of Flash, strange things began to happen in some parts of the world: for example: End of support for Adobe Flash caused interruptions in the Chinese railway system, as well as Authorities of South Africa create their own browser to continue to use Flash. It is also interesting that a special version of Flash for China turned into adware.

The post Microsoft will permanently remove Adobe Flash Player from Windows in summer 2021 appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/microsoft-will-permanently-remove-adobe-flash-player/feed/ 0 5447
A special version of Flash for China turned into adware https://gridinsoft.com/blogs/flash-for-china-turned-into-adware/ https://gridinsoft.com/blogs/flash-for-china-turned-into-adware/#respond Wed, 24 Feb 2021 16:07:02 +0000 https://blog.gridinsoft.com/?p=5150 Many users and cybersecurity specialists have discovered that a special version of Flash for China has turned into adware. As you know, at the beginning of 2021, support for Adobe Flash Player was finally discontinued. A special self-destructing code was pre-built into the software code, and starting from January 12, 2021, Adobe blocks the launch… Continue reading A special version of Flash for China turned into adware

The post A special version of Flash for China turned into adware appeared first on Gridinsoft Blog.

]]>
Many users and cybersecurity specialists have discovered that a special version of Flash for China has turned into adware.

As you know, at the beginning of 2021, support for Adobe Flash Player was finally discontinued. A special self-destructing code was pre-built into the software code, and starting from January 12, 2021, Adobe blocks the launch of any Flash content.

However, in China, Adobe has allowed local Zhong Cheng Network to continue Flash support, as it is still an important part of the local IT ecosystem and is widely used in both the public and private sectors. For example, at the beginning of the year, due to the termination of support for Flash, Chinese railway workers faced serious problems.

A special Chinese version of Flash is distributed through the flash[.]сn website and Minerva Labs recently discovered that it is insecure.

It is important to mention that the file is signed by “Zhong Cheng Network” which is a distributor of Adobe’s software in China. The binary contains an embedded DLL encrypted inside its data section, which is reflectively loaded and executed.Minerva Labs specialists report.

According to the researchers, in addition to Flash itself, other payloads also penetrate users’ machines. In particular, the application downloaded and launched the nt.dll file inside the FlashHelperService.exe process, which opens a new browser window at regular intervals and shows various sites with a lot of ads and pop-ups.

Special version of Flash for China

The suspicious behavior of this process was also noticed by Cisco Talos analysts, who noted that FlashHelperService.exe became one of the leading threats in January, and then in February.

Users noticed this problem too. Numerous complaints can already be found on the Adobe Support Forum, local blogs, and more.

Most enterprises with a Chinese office had this service installed in their organizational network. If this framework was used with a malicious intent, an attacker will have an initial foothold in many organizations.Minerva Labs researchers wrote.

Let me remind you that the Authorities of South Africa create their own browser to continue to use Flash.

The post A special version of Flash for China turned into adware appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/flash-for-china-turned-into-adware/feed/ 0 5150
Flash content will be blocked from January 12, 2021 https://gridinsoft.com/blogs/flash-content-will-be-blocked-from-january-12-2021/ https://gridinsoft.com/blogs/flash-content-will-be-blocked-from-january-12-2021/#respond Thu, 10 Dec 2020 21:16:13 +0000 https://blog.gridinsoft.com/?p=4842 Adobe released the latest Flash update this week and is even more persists in recommendations that users uninstall the app before end of support at the end of this year. Flash content will be blocked a little later. Let me remind you that earlier the developers have already warned that they will ask users to… Continue reading Flash content will be blocked from January 12, 2021

The post Flash content will be blocked from January 12, 2021 appeared first on Gridinsoft Blog.

]]>
Adobe released the latest Flash update this week and is even more persists in recommendations that users uninstall the app before end of support at the end of this year. Flash content will be blocked a little later.
In the latest Flash Player update, we updated the language and functionality of the hints for reinstallation of application to encourage people to uninstall Flash Player before end of service and to help users know that starting January 12, 2021, Adobe will block any Flash content from launching. the developers tell.

Let me remind you that earlier the developers have already warned that they will ask users to remove Adobe Flash from their machines by the end of the year.

In the latest update, the actual date of “death” of Flash is decided: January 12, 2021, after which any type of Flash content will not be launched inside the application.

The fact is that even if the user does not bother to uninstall Flash on his own, a few months ago the company added a kind of “time bomb” to the code, which will prevent the application from being used in the future.

It is also worth recalling that in October this year, Microsoft already released an update that removes Adobe Flash from all versions of Windows 10 and Windows Server, and also prevents it from being reinstalled on the device.

The “death” of Flash is expected to have minimal impact on the web ecosystem, as, according to a study by W3Techs, only 2.3% of sites still use Flash, which means that this figure has significantly decreased in recent years (for example, in 2011, the market share Flash was 28.5%).

Along with the release of the latest update, Adobe took the time to thank all Flash users and web developers who have been using it in their everyday lives and work for so many years:

We would like to thank all of our customers and developers who have used and created amazing Flash Player content over the past two decades. We are proud that Flash has played a pivotal role in the development of web content in the areas of animation, interactivity, sound and video.

Let me remind you that OS Windows 7 was also hard and reluctant to leave us: Microsoft released farewell updates for Windows 7 in january 2020, but My Digital Life forum community has found an illegal way to extend support for Windows 7.

The post Flash content will be blocked from January 12, 2021 appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/flash-content-will-be-blocked-from-january-12-2021/feed/ 0 4842
Attackers again deceived Apple’s notarization process https://gridinsoft.com/blogs/attackers-again-deceived-apples-notarization-process/ https://gridinsoft.com/blogs/attackers-again-deceived-apples-notarization-process/#respond Mon, 26 Oct 2020 23:28:51 +0000 https://blog.gridinsoft.com/?p=4478 In September 2020, I talked about how the Shlayer malware successfully passed the notarization process and was able to run on any Mac running macOS Catalina and newer. Now there is information that the attackers again deceived the notarization process. Apple introduced the “notarization process” security mechanism in February of this year: any Mac software… Continue reading Attackers again deceived Apple’s notarization process

The post Attackers again deceived Apple’s notarization process appeared first on Gridinsoft Blog.

]]>
In September 2020, I talked about how the Shlayer malware successfully passed the notarization process and was able to run on any Mac running macOS Catalina and newer. Now there is information that the attackers again deceived the notarization process.

Apple introduced the “notarization process” security mechanism in February of this year: any Mac software distributed outside the App Store must undergo a notarization procedure so that it can run on macOS Catalina and above.

Basically, any Mac software now has to go through an automated scan at Apple for malware and code signing issues. If the checks are passed, the application is whitelisted and the Gatekeeper allows launching and installing it on the system without any problems.explain Apple developers.

Unfortunately, just like Bouncer (an automated security system that scans Android apps before uploading them to the Google Play Store), Apple’s app notarization process isn’t perfect either. Thus, in total, more than 40 notarized applications infected with the Shlayer Trojan and BundleCore adware have been detected.

Most often, Trojans of the Shlayer family download and install various adware applications on the user’s device. In addition, their functionality theoretically allows downloading programs that not only flood users with advertisements, but also spontaneously open advertising pages in browsers and replace search results in order to download even more advertising messages.told information security experts.

Now, researcher Joshua Long of Intego says that he has identified six more malicious applications that have successfully passed the notarization process.

All six found “products” pretended to be Flash installers, but in fact downloaded OSX/MacOffers adware onto victims’ machines, which, in particular, interferes with the operation of the search engine in the user’s browser.

Attackers deceived the notarization process

The expert writes that Apple revoked the developer’s certificate for these malwares before Intego specialists had time to finish their investigation. It is unclear how Apple discovered these applications: perhaps the company received a warning from another cybersecurity researcher, or someone from their affected Mac users notified the company of what was happening.

As Adobe, along with other companies, plans to permanently phase out Flash support in late 2020, Long has once again urged users to stop downloading Flash installers, which are usually malicious.

The post Attackers again deceived Apple’s notarization process appeared first on Gridinsoft Blog.

]]>
https://gridinsoft.com/blogs/attackers-again-deceived-apples-notarization-process/feed/ 0 4478