May 28th, 2008 
admin You need to be aware that a particularly nasty exploit is being actively exploited in the wild. The actual exploit and vulnerability is not being disclosed. I’m assuming this is because Adobe and others are working on the problem. It seems that many thousands of sites have been exploited by means of a SQL injection vulnerability. They in turn are serving up malicious flash files that allow remote code execution on the unsuspecting computer.
In case you have no idea what that means – it’s very very bad. That means that your computer is now owned. So, what can you do? The best thing to do, if you are running Firefox, is to install the Flashblock or NoScript extensions. This will block automatic flash loads from happening.
References:
Posted in 
