Blog
Are You Ready for the Next Flash Zero-Day?
By BUFFERZONE Team, 9/02/2015
Since the beginning of the year, Adobe has released three urgent patches to address zero-day vulnerabilities in the Flash player. In each case, the vulnerability was discovered because hackers were already taking advantage of it for malvertising attacks and drive-by downloads.
One thing we can be certain of is that additional vulnerabilities exist, and that hackers will uncover them. In the race to fix, patch and update, the criminals are always one step ahead. So if you and your employees need internet access to do your jobs, you are always vulnerable.
Blocking Adobe Flash altogether, or using a script-blocking application to block Flash content, can prevent inadvertent infection. But on the organizational level, this type of approach can end up overwhelming the help desk, as users fail to understand why web pages aren’t displaying properly. Similarly, user education is not a solution. Malvertising and other types of drive-by attacks are invisible to even a sophisticated user, and often victimize legitimate sites.
And while this month Flash is grabbing all of the negative headlines, next month it may well be another browser plug-in. Since it’s impossible to predict the next threat, it’s time to look at different ways to protect internet users from the unknown. BUFFERZONE enables you to browse safely inside a secure, virtual container. If you accidentally open a site that is serving malvertising or hosting a drive-by download, the exploit will run inside the container, where it can do no harm to the rest of the computer or access the network.
Unlike a specific patch for a specific vulnerability, BUFFERZONE is a long-term solution for protecting your organization against the zero-day exploits that are yet to be discovered. Contact us for a demo.
