Articles, trends, and advice on cloud security without compromise. Keep up with the latest blog insights on web isolation, network cybersecurity, malware, and more.

Look Ma! No Flash (or Java) on my Desktop

no-flashBrian Krebs published a story this week about how, fatigued by constant needs for security updates and patches, he uninstalled Flash on his computer for an entire month. Great read and you should check it out. But the verdict? He simply didn't miss it. Interestingly, right after he published his story Adobe released an emergency patch for a zero-day vulnerability that was being exploited in the wild in "limited, targeted attacks". Looks like his experiment with removing Flash turned out to be a vital security precaution. As for me, I had click-to-play configured on my browser for all plugins and really didn't care much for the ads that were annoying in the first place anyways.


While Brian, myself and many others in the security industry have the luxury of removing Flash and Java from the endpoints, many of the enterprises that we speak with simply don't have that option. They support thousands (or tens or hundreds of thousands) of users, and upgrading their endpoints with new software can take months and cost millions. They need Java for internal legacy apps to simply get their job done every day. Additionally, Flash may be used for, say, training videos or other business-critical content at partner sites or other, so even making sure your employees are learning properly is unsafe. And when enterprise users point their browser with vulnerable Java and Flash players to the broader Web, BOOM! – They succumb to zero-day malware that none of their detection-based security systems can stop. And thus the cycle of infection, remediation and patching followed by new infections just continues. 

Enterprises would love to completely do away with Java and Flash from the endpoints, but they've been unable to do so - until now. We recently launched our Isolation Platform, which is a remote execution environment in the cloud (private or SaaS) with a unique and powerful breakthrough: We call it Adaptive Clientless Rendering (ACR) technology. ACR enables our Isolation Platform to execute Web sessions remote from the endpoint and prevent malware from reaching end user devices - ever. The new twist is that with ACR technology we deliver a completely native user experience without requiring endpoint software, plugins or browser extensions - including Java and Flash.

So bye-bye to Java and Flash vulnerabilities and zero-day attacks - well, at least bye-bye to *caring* about them.  With the Isolation Platform, Java and Flash never reach your endpoints, so users are always safe. Even without Flash on the endpoint, you still get to experience the content, only without the malware. As for click-to-play? You no longer need it, at least not for security's sake. That means you still get to watch those annoying ads, but without the fear of getting pwned.

Tags: malware, isolation, flash

Connect with us

Lists by Topic

see all

Recent Posts