The IT Nerd

Stop me if you’ve heard this before, but you need to update Adobe Flash ASAP as there are exploits that hackers are actively using them. The really funny part is that the people who came across this was beleaguered anti-virus company Kaspersky.

Yeah. Those guys.

In any case, this exploit is serious as per this:

The warning came after cyber security firm Kaspersky Lab Inc said a group it was tracking, BlackOasis, used the previously unknown weakness on Oct. 10 to plant malicious software on computers before connecting them back to servers in Switzerland, Bulgaria and the Netherlands.

Kaspersky said the malware, known as FinSpy or FinFisher, is a commercial product typically sold to nation states and law enforcement agencies to conduct surveillance.

Kaspersky said its assessment of BlackOasis shows it is targeting Middle Eastern politicians and United Nations officials engaged in the region, opposition bloggers and activists, and regional news correspondents with the latest version of FinSpy.

The company said victims have so far been observed in Russia, Iraq, Afghanistan, the United Kingdom, Iran and elsewhere in Africa and the Middle East.

Excellent. Here’s what you can do to protect yourself:

Option 1: Download the latest Adobe Flash. Install it and wait for the next Flash based exploit to appear.

Option 2: Uninstall Adobe Flash as there is no real reason to run it. That will make the next Flash based exploit a non-event.

The choice is yours.

Well, I’ve come to the end of this experiment of removing Adobe Flash from my system over the last month. As promised, I downloaded a copy of Google Chrome and found that the issues with the Belkin NetCam site that I described in my previous post went away. That’s because Chrome has the Flash player built into the browser and it is sandboxed. Meaning that if some evil doer tries to use a Flash exploit, it stays within the browser. It also means that there’s no need for a separate plug-in. Another plus is that Chrome auto updates itself so you will always have an up to date copy of Flash installed, though it may take a couple of days before it hits your computer.

So, with that out of the way, my conclusions are as follows:

• For the most part, there’s no practical need to have Adobe Flash on your computer as most web content will work fine without it. Plus your system will perform better.
• If you need to use Flash for whatever reason, your best bet is to run Google Chrome. At least that way, you’re protected from the evils of those who exploit Flash and Flash will not impact your system performance simply by having the plug-in installed.

The bottom line is that Adobe Flash is staying off my system going forward and I believe I will be better off for it. What are your thoughts on this? Please share your thoughts below.

Up until now, life without Flash was perfect. In part 1, I found that the performance and battery life of my MacBook Pro improved by removing it. Part 2 had me answering questions about porn and surveys and finding that they still worked with a couple of exceptions. And part 3 had me experiencing no issues with not having Flash on my system.

That changed today as I discovered that on the Mac platform, you need Flash if you have a Belkin NetCam. That’s because unlike the PC which offers an alternate plug in so you don’t have to use Flash, the NetCam website doesn’t have anything similar for the Mac. Now is this a deal breaker? As long as I have my phone on me, it’s not as the NetCam app allows me to view video. If I have to rely on a Mac to see what’s going on at home, then I have a problem. I’m going to install Google Chrome as it comes with Flash as part of the browser. Thus I don’t have to reinstall Flash on my system. When I get a chance to do that, I’ll report back and finish up this experiment and let you know what the final verdict is.

So I am mid way through my attempt to live without Adobe Flash. I described how and why I removed it and answered some questions that people had. But the real question is, how am I surviving without Flash?

Just fine thanks.

I’ve been using my MacBook Pro without an issue. My surfing activities haven’t been affected and I haven’t found a pressing need to reinstall it. In short, it’s been really uneventful. I can also confirm that my battery life on my MacBook Pro is 45 minutes longer since removing Flash. I can also confirm that my MacBook Pro uses less CPU power when I surf the Internet. These are all positive developments.

As for security, I can’t prove that I am more secure. But knowing that in the last few weeks that there have been multiple Flash updates for security issues that were actively being exploited, I am pretty sure that I am more secure by not having Flash.

I am really glad that I did this. I will continue with this experiment for another 14 days and barring any surprises, I will leave my computer this way.