Recently there was a competition pwn2own, where security researchers competed in hacking laptops loaded with fully updated versions Ubuntu Linux, Apple, and Windows Vista.
Apple was the first to fall, on day 2 where only build-in programs could be hacked, though a hole in the Safari browser.
On day 3 all "popular programs" could be targeted, and the Vista laptop was hacked using a hole in the Adobe flash player. This left Ubuntu Linux standing, but mostly by luck, as the hole in the flash player was probably cross platform. As far as I can tell, an updated version of the flash player has not been released.
So now the question is: does it bother you that your computer could be taken over every time you visit a web site? Only visiting trusting web sites doesn't work, as many web site such a apolyton will import flash adds from basically unchecked sources.
It bothers me, and I have disabled the adobe flash plugin for now.
Apple was the first to fall, on day 2 where only build-in programs could be hacked, though a hole in the Safari browser.
On day 3 all "popular programs" could be targeted, and the Vista laptop was hacked using a hole in the Adobe flash player. This left Ubuntu Linux standing, but mostly by luck, as the hole in the flash player was probably cross platform. As far as I can tell, an updated version of the flash player has not been released.
So now the question is: does it bother you that your computer could be taken over every time you visit a web site? Only visiting trusting web sites doesn't work, as many web site such a apolyton will import flash adds from basically unchecked sources.
It bothers me, and I have disabled the adobe flash plugin for now.
Comment