Skip to main content
  1. Home
  2. Computing
  3. News

Facebook’s head of security wants an ‘end-of-life’ date for Flash

By

adobe flash logo
Image used with permission by copyright holder
In the wake of last week’s Hacking Team breach, two more critical flaws in Adobe Flash have been discovered, which has rekindled the debate over its security integrity. Facebook’s new chief security officer, Alex Stamos, has now called for an end to Flash.

Tweeting over the weekend, Stamos called on Abode to set an “end-of-life” date for Flash, “even if, 18 months from now, one set date is the only way to disentangle the dependencies and upgrade the whole ecosystem at once,” he added.

Recommended Videos
Please enable Javascript to view this content

Last Friday, Adobe released a security bulletin that detailed new vulnerabilities through which an attacker could gain control of a victim’s computer. It affects Windows, Mac, and Linux users.

Flash’s security has always been a hot topic. Steve Jobs once famously decried its security. He had taken umbrage with Flash and felt it would compromise Apple’s devices. “We don’t want to reduce the reliability and security of our iPhones, iPods, and iPads by adding Flash,” he said five years ago. To this day Flash isn’t pre-installed on Apple products.

Noted security blogger Graham Cluley echoed Stamos’ remarks, but added that Adobe is unlikely to heed this advice.

“The truth is that the company would probably gain a lot more respect from the Internet community if it worked toward this ultimate fix for the Flash problem, rather than clinging on to the belief that it might be able to one day make Flash secure,” he said.

Security issues with Flash have constantly dogged Adobe. Just last month it pushed out another security advisory following the discovery of a bug that would, once again, allow an attacker to gain control of a computer.

Despite these concerns, Adobe has maintained Flash and regularly patches and updates it. Last month, it was praised for responding to vulnerabilities with patches within 24 hours.

However last week’s hack on Hacking Team — which saw a 400GB cache of sensitive data hit the Web — was a different kind of threat. The firm has been accused of supplying surveillance technology to repressive governments.

Zero days — previously undiscovered and unpatched vulnerabilities that can be invaluable to hackers as no one else yet knows about them — were found among the data. It has caused great consternation in the security community given the type of work that Hacking Team was allegedly facilitating, if standard patches would be enough, and if any more Flash threats will emerge from the breach.

Topics
Jonathan Keane
Jonathan Keane
Former Digital Trends Contributor
Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…
LG’s new Gram Pro finally looks like a serious MacBook Pro rival
An LG Gram laptop on a table.

Just ahead of CES, LG has announced a refresh to its Gram Pro lineup, as well as launched a budget-friendly Gram Book. The tweaked Gram Pro laptops are the most exciting, though, with the the LG Gram Pro 17 catching my eye.

First off, it's been thinned out a bit, dropping down to 0.62 inches thick, which is almost the same thickness as the 16-inch MacBook Pro. The LG Gram Pro 17 is also a full pound and a half lighter than the MacBook Pro, both of which are striving to be one of the best laptops you can buy.

Read more
Nvidia’s new GPUs show up in prebuilts, but the RTX 5090 is missing
iBUYPOWER RTX for AI PCs side view of pre-built on sale hero

Nvidia's upcoming RTX 5080 and RTX 5070 Ti just appeared in several iBUYPOWER gaming PCs. This is the first U.S. retailer to list Nvidia's RTX 50-series in prebuilt systems. The listings are interesting, with performance figures that really don't add up. Still, the biggest question is: Where's the GPU that's bound to beat all the current best graphics cards? Yes, we're talking about RTX 5090.

The listings have already been taken down, but they were preserved by VideoCardz. A total of five systems were listed by iBUYPOWER, but they all contained the same two GPUs -- either the RTX 5080 or the RTX 5070 Ti. Both cards are said to come with 16GB of memory, and we expect them to be announced on January 6 during the CES 2025 keynote held by Nvidia's CEO, Jensen Huang.

Read more
OLED gaming monitors are about to get a lot brighter
Path of Exile 2 running on an Asus gaming monitor.

One of the biggest criticisms leveled against OLED monitors, despite being some of the best gaming monitors you can buy, is how dim they are. Although brightness is steadily increasing, it looks like the next crop of OLED gaming monitors will make quite the leap when it comes to HDR performance. Ahead of CES 2025, VESA has revealed a new tier of its DisplayHDR standard that's focused squarely on the brightness of OLED monitors.

The certification is DisplayHDR True Black 1,000. Most OLED gaming monitors, such as the MSI MPG 321URX or Alienware 27 QD-OLED, are certified with DisplayHDR True Black 400. This certification level is reserved for OLED -- or extremely high-end mini-LED -- displays that achieve nearly perfect black levels. According to VESA's specifications, the display has to reach 0.0005 nits with a checkboard pattern. Now, VESA is focusing on the other end of the spectrum, adding a more demanding tier that maintains those low black levels while pushing brightness higher.

Read more