* Posts by KJG

2 posts • joined 23 Dec 2007

Serious Flash vulns menace at least 10,000 websites

KJG

To the anonymous coward

To the anonymous coward who commented on my "rant" - I absolutely know what XSS is and the risks surrounding it. It doesn't take a rocket scientist to develop a website, with or without flash, to avoid these risks. It's the developers that are maliciously embedding this type of scripting within their websites and yes, the uneducated users who are clicking on unreliable and risky links and kicking off programs they should know better not to run. And I'm sorry that you don't frequent sites with .swf files due to the preloaders... you should think about getting off of dial up.

0
0
KJG
Stop

A lot of misdirected anger

Flash is not the issue. Phishing is. The solutions are to continue to combat phishing and to educate people as to how to detect phishing and how to avoid being suckered in by it. This issue impacts ALL websites, not just ones with Flash. Being a web developer/designer, I resent the slant that this article is written in... anyone who lacks the facts and jumps to conclusions would think that Adobe/Flash are the root of the problem when that is simply not the case.

And to all the users who are bashing Flash (and blocking it), all you have to do is take 15 minutes and browse through the websites at www.thefwa.com and you'll see what you're missing. Just about every major corporation has built a full blown (and beautifully designed and executed, mind you) Flash website that blows away any html based site.

0
0

Forums