Adobe on Tuesday issued a critical security update to patch a vulnerability that could help hackers “take control” of computers after users visit various sites, CNET reports. Security blogger Michele Spagnuolo, who detailed the security exploit, says the Flash issue can be used by hackers to steal cookies that authenticate users on “thousands of websites.”
“Adobe has released security updates for Adobe Flash Player 18.104.22.168 and earlier versions for Windows and Macintosh and Adobe Flash Player 22.214.171.1248 and earlier versions for Linux,” Adobe wrote. “These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe recommends users update their product installations to the latest versions.”
Among the websites that may have been targeted by hackers aware of the security flaw, Spagnuolo mentioned Google services (including Accounts, Google.com Books, Maps, YouTube and others), Twitter, eBay, Instagram, Tumblr and others. Of them, Google, Tumblr and Twitter have already fixed the issues on their websites, with other expected to take similar actions in the near future.
While it’s not clear if the newly found Flash security flaw has affected anyone, users are still advised to update Flash on their systems immediately. For a more in-depth look at how this Flash security issue can be taken advantage of, check the source links below.