Skip to main content
  1. Home
  2. Computing
  3. News

Facebook’s head of security wants an ‘end-of-life’ date for Flash

Jonathan Keane
By

adobe flash logo
Image used with permission by copyright holder
In the wake of last week’s Hacking Team breach, two more critical flaws in Adobe Flash have been discovered, which has rekindled the debate over its security integrity. Facebook’s new chief security officer, Alex Stamos, has now called for an end to Flash.

Tweeting over the weekend, Stamos called on Abode to set an “end-of-life” date for Flash, “even if, 18 months from now, one set date is the only way to disentangle the dependencies and upgrade the whole ecosystem at once,” he added.

Recommended Videos

Last Friday, Adobe released a security bulletin that detailed new vulnerabilities through which an attacker could gain control of a victim’s computer. It affects Windows, Mac, and Linux users.

Flash’s security has always been a hot topic. Steve Jobs once famously decried its security. He had taken umbrage with Flash and felt it would compromise Apple’s devices. “We don’t want to reduce the reliability and security of our iPhones, iPods, and iPads by adding Flash,” he said five years ago. To this day Flash isn’t pre-installed on Apple products.

Noted security blogger Graham Cluley echoed Stamos’ remarks, but added that Adobe is unlikely to heed this advice.

“The truth is that the company would probably gain a lot more respect from the Internet community if it worked toward this ultimate fix for the Flash problem, rather than clinging on to the belief that it might be able to one day make Flash secure,” he said.

Security issues with Flash have constantly dogged Adobe. Just last month it pushed out another security advisory following the discovery of a bug that would, once again, allow an attacker to gain control of a computer.

Despite these concerns, Adobe has maintained Flash and regularly patches and updates it. Last month, it was praised for responding to vulnerabilities with patches within 24 hours.

However last week’s hack on Hacking Team — which saw a 400GB cache of sensitive data hit the Web — was a different kind of threat. The firm has been accused of supplying surveillance technology to repressive governments.

Zero days — previously undiscovered and unpatched vulnerabilities that can be invaluable to hackers as no one else yet knows about them — were found among the data. It has caused great consternation in the security community given the type of work that Hacking Team was allegedly facilitating, if standard patches would be enough, and if any more Flash threats will emerge from the breach.

Topics
Jonathan Keane
Jonathan Keane
Former Digital Trends Contributor
Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…
It’s time to stop believing these PC building myths
Hyte's Thicc Q60 all-in-one liquid cooler.

As far as hobbies go, PC hardware is neither the cheapest nor the easiest one to get into. That's precisely why you may often run into various misconceptions and myths.

These myths have been circulating for so long now that many accept them as a universal truth, even though they're anything but. Below, I'll walk you through some PC beliefs that have been debunked over and over, and, yet, are still prevalent.
Liquid cooling is high-maintenance (and scary)

Read more
AMD’s next-gen CPUs are much closer than we thought
AMD Ryzen 7 7800X3D held between fingertips.

We already knew that AMD would launch its Zen 5 CPUs this year, but recent motherboard updates hint that a release is imminent. Both MSI and Asus have released updates for their 600-series motherboards that explicitly add support for "next-generation AMD Ryzen processors," setting the stage for AMD's next-gen CPUs.

This saga started a few days ago when hardware leaker 9550pro spotted an MSI BIOS update, which they shared on X (formerly Twitter). Since then, Asus has followed suit with BIOS updates of its own featuring a new AMD Generic Encapsulated Software Architecture (AGESA) -- the firmware responsible for starting the CPU -- that brings support for next-gen CPUs (spotted by VideoCardz).

Read more
AMD Zen 5: Everything we know about AMD’s next-gen CPUs
The AMD Ryzen 5 8600G APU installed in a motherboard.

AMD Zen 5 is the next-generation Ryzen CPU architecture for Team Red and is slated for a launch sometime in 2024. We've been hearing tantalizing rumors for a while now and promises of big leaps in performance. In short, Zen 5 could be very exciting indeed.

We don't have all the details, but what we're hearing is very promising. Here's what we know about Zen 5 so far.
Zen 5 release date and availability
AMD confirmed in January 2024 that it was on track to launch Zen 5 sometime in the "second half of the year." Considering the launch of Zen 4 was in September 2022, we would expect to see Zen 5 desktop processors debut around the same timeframe, possibly with an announcement in the summer at Computex.

Read more