Adobe Flash Archives

Home » Adobe Flash

Watering hole attack prevention

Dave Farquhar security August 2, 2017August 1, 2017Adobe Flash, antivirus, breach, malware, malwarebytes, Proxy server, Whitelist, Windows 10, windows 7, Windows XP

A watering hole attack is an indirect attack on a victim. Rather than directly attacking the victim’s network, the attacker attacks a web site that the victim’s employees are likely to visit. Then the attacker attacks the victim’s network, via its own workstations, from that web site. A former colleague asked me how you protect against watering hole attacks, and I thought this was a good exercise. So here are some strategies for watering hole attack prevention.

Dave Farquhar

David Farquhar is a computer security professional, entrepreneur, and author. He started his career as a part-time computer technician in 1994, worked his way up to system administrator by 1997, and has specialized in vulnerability management since 2013. He invests in real estate on the side and his hobbies include O gauge trains, baseball cards, and retro computers and video games. A University of Missouri graduate, he holds CISSP and Security+ certifications. He lives in St. Louis with his family.

dfarq.homeip.net

Unchecky is another tool to help with staying out of trouble with malware

Dave Farquhar security October 22, 2015September 16, 2016Adobe Flash, antivirus, irony, malware, oracle, psi

I found a mention of a tool called Unchecky as a minor point in a story about something else entirely. Unchecky helps to solve the problem with downloaded programs including a bunch of extra junk you don’t want.

I won’t be running it myself. But the next time I fix a computer, I’ll probably install it on that one.

Dave Farquhar

dfarq.homeip.net

Why every breach is different

Dave Farquhar security February 6, 2015February 5, 2015Adobe Acrobat, Adobe Flash, breach, Microsoft Office, unix, vulnerability, windows nt

I’ve grown used to being asked what unpatched vulnerability was used in the most recent breach, in an effort to make sure some other company is protected.

I appreciate the desire to learn from other companies’ mistakes and not repeat them. But there are several reasons why the answer to that question is complicated, and not necessarily helpful.

Dave Farquhar

dfarq.homeip.net

Time to update Flash again. This is a big one.

Dave Farquhar security February 6, 2014Adobe Flash, Ars Technica, code execution, psi

There’s an exploit in Flash, on all platforms, being actively exploited in the wild. Adobe rushed out an update. See more at Ars Technica. It allows remote code execution, so this one is as bad as it gets.

Installing EMET is a potential mitigation against Flash exploits, so if you’re running Windows, protecting Flash with EMET is an extremely good idea. Uninstalling Flash is an even better idea, but I don’t think HTML5 is quite ready to replace this scourge of computing security just yet.

I noticed that Secunia PSI automatically updated Flash on all of my machines, which was nice.

See, security doesn’t have to be painful.

Dave Farquhar

dfarq.homeip.net