You won’t find me agreeing with Steve Jobs very often. This is not to say I disagree with how he runs his business, because I think he is a marketing and product design genius, but I think his approach towards security relies too much on “security through obscurity” and “protecting the user from themselves”. However, his comments on Flash’s security were spot on and the latest security advisory from Adobe, illustrates this.

In summary this vulnerability effects all versions of Flash except their Release Candidate version (10.1). The vulnerability allows an attacker to take control of your system, log your keystrokes or crash your system. Captured information could allow them to access your bank account, personal records and email. Suffice to say this is a huge issue and because it is not a virus, but an exploit of software that is supposed to be on your computer, your anti-virus software cannot protect you from this. ScapeCaster recommends immediately upgrading all of your systems to Flash Release Candidate 10.1. We have been using Flash 10.1 for several months and have detected no issues that would effect normal use and should improve performance of viewing Flash video.