Flash, it's been a good run. We've had a lot of fun together, but it's time to get some distance... permanently. You're outdated and insecure and untrustworthy. It's not me, it's you. Fake breakup aside, it's simple to wipe every trace of Flash from your computer, so let's go for it.
Whilst Project Zero has gained a reputation for vulnerability and exploitation research, that's not all that we do. One of the main reasons we perform this research is to provide data to defenders; and one of the things that defenders...
Being one of the most prolific sources of security vulnerabilities in Windows and other platforms, Adobe Flash Player needs no introduction. In spite of that reputation, and the fact that the rest of the industry is moving away from Flash, Microsoft surprised many of us by bundling the software with its operating system for the first time with Windows 8. This is after previously announcing that they wouldn't allow Flash in the Metro version of Internet Explorer 10 -- a decision the company later reversed.
I was glad when the Adobe Flash Player Updater was released in March. Finally the day had come when our machines would be silently updated with the latest Flash version... or so I thought. It'd just seem Adobe is making all possible efforts to make its software more bloated and less attractive to all consumers, here's why.