Comments on: Adobe Flash, The Spy in Your Computer – Part 1 http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/ News, Views, and Insight from the ESET Security Community Mon, 03 Feb 2014 08:49:00 +0000 hourly 1 http://wordpress.org/?v=3.7 By: David Harley http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-4357 Mon, 18 Nov 2013 18:50:00 +0000 http://blog.eset.com/?p=5092#comment-4357 Sorry, but I’m afraid we’re not best-placed to offer G+ support: Google knows the internals of the service far better than we do…

]]>
By: wasfoghat812onyoutube http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-4350 Sat, 16 Nov 2013 22:13:00 +0000 http://blog.eset.com/?p=5092#comment-4350 google + popped up for me to join so much on youtube and i didn’t know google had bought youtube. i finally became impatient with the popup (exactly what they wanted most likely huh) and joined. now my youtube identity is ruined and i can’t figure out how to delete my google + account. in fact, i did delete it. but it is still there and won’t go away. HELP?

]]>
By: NansNook http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-4295 Sun, 27 Oct 2013 19:10:00 +0000 http://blog.eset.com/?p=5092#comment-4295 Thank you VERY much. I am a 50 year old computer challenged lady who is at the mercy of my children for my computer knowledge and settings. I stumbled across your site when attempting to “fix” a Adobe box that was always popping up on my videos. I had no idea what was actually happening when I watched some videos. Your website saved me from future spying. Thanks again from Wasilla, AK.

]]>
By: lobo http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-4238 Fri, 13 Sep 2013 23:06:00 +0000 http://blog.eset.com/?p=5092#comment-4238 It was Luck I came across this needed information. I dont like to see those pop up ads plus also hoping They All dont come back. Thank you so much!

]]>
By: Stephen Cobb http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-3895 Tue, 19 Mar 2013 16:57:00 +0000 http://blog.eset.com/?p=5092#comment-3895 Glad we were helpful.

]]>
By: Guest http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-3884 Thu, 14 Mar 2013 23:00:00 +0000 http://blog.eset.com/?p=5092#comment-3884 Thank you for the very useful information. I followed your steps and seem to have got rid of the constant s.ytimg.com pop-ups. I hope…..

]]>
By: Jack R http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2509 Sun, 18 Nov 2012 06:20:06 +0000 http://blog.eset.com/?p=5092#comment-2509 This IMMEDIATELY turned off that annoying storage prompt on my YouTube videos. I right clicked and chose Global Settings per your notes – thank you VERY much!

]]>
By: Frustrated Flash Blocker http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2508 Thu, 23 Aug 2012 01:45:13 +0000 http://blog.eset.com/?p=5092#comment-2508 Figured it out. Flashblock doesn't stop the Flash application from running whenever Firefox detects a webpage with Flash content.
Firefox runs the Flash app, the focus briefly goes to the Flash executable, and meanwhile Flashblock blocks the actual Flash content on the web browser. The Flash executable releases the focus which then sits on the Windows desktop, waiting for the user to task-switch back to the web browser.
What I don't get is why, after the Flash app is running, it needs to take the focus at all whenever a new webpage with Flash content is loaded. The Flash app shouldn't ever need the focus, as its only purpose is to sit in the background and run Flash apps on your web browser.
Anyway I know these messages were somewhat off-topic so thanks for listening. And thanks for the good advice on protecting myself from runaway Flash spyware. I would never have found this site had Flash not been behaving so badly, so I guess there's a silver lining there, too.

]]>
By: Frustrated Flash Blocker http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2507 Fri, 10 Aug 2012 22:52:06 +0000 http://blog.eset.com/?p=5092#comment-2507 To be clear the mouse wheel doesn't get disabled, it's just the hidden Flash object makes Flash run in Windows, which takes the focus off the browser and forces me to put the focus back on the browser.
I could do that with Alt-Tab instead of clicking on the browser window and not be forced to endure these new, extremely pernicious pop-up ads that take advantage of users clicking on innocuous-looking objects (or in this case what looks like plain text) in a browser window.
I am "solving" the problem presently by switching on Flash to view videos then switching it off again to do anything else. I keep a tiny browser window open to "AddOns" so I have quick access to the "Enable / Disable" button.
If only Flashblock would do its job these invisible focus-grabbing Flash objects wouldn't be a problem …

]]>
By: Frustrated Flash Blocker http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2506 Fri, 10 Aug 2012 22:46:12 +0000 http://blog.eset.com/?p=5092#comment-2506 Hey, I've found some kind of Flash object that bypasses Flash Block and could only be spyware.
I found it because it grabs the focus and the mouse scroll wheel stops working. When I call up task manager I see 3 Flash-related apps under "Processes". There are no videos running and Flashblock is supposedly keeping out the Flash, only it obviously isn't.
If I go to Firefox Addons and disable Flash myself the task manager stays clean, the browser keeps focus, and the mouse wheel keeps working.
What's particularly annoying about this focus-grabbing unblockable Flash spyware is that when you click on the webpage to put the focus back so you can scroll with the mouse the new, annoying "invisible button pop-up" kicks in and you get a pop-up ad.
If Flashblock would just do it's friggin' job I wouldn't have this stupid problem, so what I want you guys to do is raise such a big stink about this unblockable Flash to the Flashblock people that they figure out how this unblockable Flash is triggering and FIND A WAY TO BLOCK IT!
Thanks for your time.
-Frustrated Flash-Blocker

]]>
By: David Harley http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2505 Wed, 25 Jul 2012 18:53:28 +0000 http://blog.eset.com/?p=5092#comment-2505 Hello, Mr. Gentile or whatever your real name is. Sadly for you, this blog strips URLs automatically.However, I’d strongly advise that no-one use any service that attempts to publicize itself using comment spam….

]]>
By: Raymond Gentile http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2504 Wed, 25 Jul 2012 18:38:44 +0000 http://blog.eset.com/?p=5092#comment-2504 |I don’t usually interrupt awesome discussions such as this with my own personal issues, but I really need the help of anyone who is happy to lend me a hand. I’m considering using the services of and I was wondering if somebody here has used them previously. I am looking for both the bad and the good areas of their business. Please get back to me as fast as possible for this is vital. I appreciate it.

]]>
By: larry mills http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2503 Mon, 04 Jun 2012 22:17:26 +0000 http://blog.eset.com/?p=5092#comment-2503 Helpful. I was able to deny s.yting.com – an Adobe spy on my Windows7.

]]>
By: J. Ambrose Lucero http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2502 Thu, 19 Apr 2012 18:08:36 +0000 http://blog.eset.com/?p=5092#comment-2502 I worked at the Terrorist Screening Software Development center of the FBI's TSC, recruited to do the bootstrap documentation systems for their new distributed systems terrorist identity management applications. I documented and illustrated everything from the underlying Extensible Identity Search Architecture to the various identity info search apps that were moving to use EISA. I was completely successful, earned a Service Commendation in 2008. In 2009, however, my MacPro, the only computer not administered or understood by IT, came under attack, killing my productivity. Lots of details go into this, including my discovery of an incursion into the classified net under my log on on my Mac, but pertinent here is the fact that I concluded that the attacks were Flash scripts. I had just taken a course in Flash scripting, so it was obvious to me. Long story short, I was whistle blown out of the contract, and have been attacked over the Internet constantly since. SO THANKS A BILLION FOR YOUR BLOG. Adobe and other big players have been obfuscating their GUIs for years. All that candy is just the icing on the stockholders' cake. J. Ambrose Lucero, 7033311429

]]>
By: Gunnar http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2501 Thu, 12 Apr 2012 00:56:00 +0000 http://blog.eset.com/?p=5092#comment-2501 Our tech and security division found this article when the officer enter the string "adobe flash is spyware". As an aerospace and defense company (Canadian) very concerned about privacy and keeping our proprietary information on Canadian soil, this news is quite alarming. On a similar vein, one thing that we have done throughout the corporation is to ensure that all employees and associates DO NOT use Google, Yahoo or Bing as their default search engines. They are temporarily going through the search at Rediff.com, but I suspect that search is at least in part powered by the US-based engines and we'll need to check out the technical relationship.
We are going to file a motion with both the EU privacy commissioner and the domestic (Canadian) counterpart asking for a further investigation into this. At the least, it would be pertinent that public authorities here in Canada and in the EU clearly advise both consumers and local businesses of the risks of using Flash and work to develop an alternativ (or to limit the spying functions). Being mostly on Solaris, we've encouraged employees (who need to watch various training videos and technical lectures) to point their desktop player to the link and download instead. But that doesn't help much, as they still need to use Flash to view them!

]]>
By: Erik http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2500 Sun, 08 Jan 2012 18:44:04 +0000 http://blog.eset.com/?p=5092#comment-2500 Just finding out about all this stuff now. I am not a tech guru, but I see that apparently I'll have to become one or I will always be vulnerable.  This info is great.  Adobe is pure scum.  For years I couldn't figure out why it was asking me for updates when I was not connected to the internet.  We need to get together and start a company that focuses on stopping this nonsense. Keep after them Randy.  Never stop.  These companies count on just outlasting everybody because they are so big.  Don't let them do it.
Erik

]]>
By: David Harley http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2499 Thu, 01 Dec 2011 10:43:47 +0000 http://blog.eset.com/?p=5092#comment-2499 “truth speaks”: your post has had most of its content removed because it contains unverified flaming and accusations not relevant to the blog article. If you have a quarrel with lyecdevf, please take it to a more appropriate forum.

]]>
By: truth speaks http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2498 Thu, 01 Dec 2011 10:29:36 +0000 http://blog.eset.com/?p=5092#comment-2498 What lyecdevf is trying to say … [rest of post deleted: if you have a quarrel with lyecdevf please take it to a more appropriate forum. We're not going to approve unverified flames and accusations. (DH)]

]]>
By: lyecdevf http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2497 Sat, 19 Feb 2011 18:59:47 +0000 http://blog.eset.com/?p=5092#comment-2497 I do not trust Adobe at all.  Especially when I read that Adobe reader calls home and connects to Omniture when you open pdf files.  Now if I open any pdf files I do that on my gaming computer that is not connected to the internet.  
Adobe flash player I have not used in a while now either.  Right now I do not watch any videos online but in the near future I am planing to use a combination of greasmonkey scripts, firefox plugins,…to get those videos and watch them on my embeded video player.
I have been working lately to make sure that as little information as possible gets of my computer.  I have made my web browser less tracable, I am using linux,…I am even thinking about not using google for searches and all those major e-mail providers.  I just find this idea that there are people trying to sell your personal info to ad companies a tad too much to bear. 

]]>
By: DasFox http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2496 Thu, 09 Dec 2010 05:14:48 +0000 http://blog.eset.com/?p=5092#comment-2496 THIS does not work if you use the Better Privacy Firefox addon.

When it deletes the LSO then all the Settings Manager, settings get set back to default.

SCRATCH this, we need some change of information here….

THANKS

]]>
By: DasFox http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2495 Thu, 09 Dec 2010 05:09:11 +0000 http://blog.eset.com/?p=5092#comment-2495 You should tell people about the Better Privacy Firefox addon;

Or let us know if there is anything else too?

THANKS

P.S. Nice blog, so when is someone going to SUE Adobe?

]]>
By: Adobe & Google Sux http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2494 Sun, 21 Nov 2010 03:23:20 +0000 http://blog.eset.com/?p=5092#comment-2494 Hi Randy! Thanks for Exposing them Spyin' Scum Bags! I just wanted to give u the "Heads Up" that EVERY time that I use the Global or the Website Privacy Settings (in YouTube) & I block them from spyin' on BOTH, within a couple minutes, they RE-SET THEMSELVES to Settings where they can spy again! HELL YEAH! It's unbelievable, but TRUE! There is this website: s.ytimg.com that ALWAYS wants to spy through ur Camera & mic & ACTUALLY non-stop get it activated again over & over! I was UTube once & the box came up askin' if I would "ALLOW s.ytimg.com to access my camera & mic" & I put "no" of course, but then I would check that box peridically & it would be re-set again to allow them! I searched: s.ytimg.com on the net and it said that it is a spyin' & trackin' company! Then I investigated more & found out that they are a partner of YouTube!!! So YouTube has this site spyin' on ALL YouTubers! Also, Adobe Flash Player includes this folder into your hard drive called "Macromedia" that when u open it it is a "shared folder" that is TRACKING everywhere that U go on the Internet & stores even Bank info, if u visit a Bank site!! So I keep deleting it, & within minutes it pops back up AGAIN! Then it also re-sets the Flash player's Global & Website Privacy Settings to "Default" which allows ALL kinds of trackers into ur hard drive! It is Fricken insane! I can't believe the nerve of them A-Holes! Then to top it all off, there isn't a replacement for Adobe Flash Player so they got us by the Balls!  If u check out what I'm tellin' U, maybe u can add it to ur Second Blog.  And of course we ALL know about Google being one of the #1 Spyers on the list! I won't even go there!  Latah!

]]>
By: rochelle http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2493 Tue, 16 Nov 2010 06:53:21 +0000 http://blog.eset.com/?p=5092#comment-2493 hi,
i thanks for the blog.ive came across your blog bec i think someone's been accessing my cam wihtout me knowing it. bec i only open my cam to my sister this morning but a crazy guy that i deny to talk to in ym just sent pictures of me from my webcam same time as i am talking to my sister…didnt know how he did it bec my cam only shows 1 viewer..
i also learned to deny sharing my bandwith?my computer seemed to work too slow ,and i think my ISP provider shares bandwith with different users bec a tech support once slipped and said that the line or something like that is like shared with a computer shop thats why its so slow during the day.
nways..thank you so much for the bog..keep it up :)

]]>
By: Randy Abrams http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2492 Wed, 13 Oct 2010 17:23:03 +0000 http://blog.eset.com/?p=5092#comment-2492 They also in some cases write normal cookies back after the user deleted them. Just becasue there are other ways in which your privacy can be compromised it doesn’t make the behavior of Flash right.

]]>
By: tjessy http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2491 Sat, 09 Oct 2010 16:00:43 +0000 http://blog.eset.com/?p=5092#comment-2491 I think in 2010 even without Flash your privacy could be compromised… just think of Google or any other search engine, facebook and the other thousands of social-networking sites / programs. In my opinion somehow it became "natural" that the ads I see during browsing are somehow "relevant" to me. They track the user's habits to develop their services… is that such a huge problem? I don't think so…
Cheers,
J

]]>
By: Randy Abrams http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2490 Thu, 07 Oct 2010 14:49:22 +0000 http://blog.eset.com/?p=5092#comment-2490 Ahhh, Firefox and Chrome add-ons come next :)

Unfortunately, you can’t retrieve your privacy, but you can take steps to prevent further abuses.

]]>
By: landloper http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2489 Thu, 07 Oct 2010 14:20:19 +0000 http://blog.eset.com/?p=5092#comment-2489 Thank you very much for this manual. I am using firefox flashblock and only activate flash on a few favourite sites. But I think your advice will still help me to retrieve my privacy. I am looking forward for your next blog.

Thanks, landloper

]]>
By: Randy Abrams http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2488 Thu, 07 Oct 2010 12:15:10 +0000 http://blog.eset.com/?p=5092#comment-2488 Thanks Richie. We made some changes and I didn’t realize the pics would default to https. I have fixed the links. BTW, when you enter an email address to post a comment, it is not passed on to marketing or used for anything other than the occasional time when one of the bloggers might wish to make a personal reply.

]]>
By: RichieB http://www.welivesecurity.com/2010/10/06/adobe-flash-the-spy-in-your-computer-part-1/#comment-2487 Thu, 07 Oct 2010 10:17:07 +0000 http://blog.eset.com/?p=5092#comment-2487 Thanks a lot for this informative article. All the links to the screenshots are to the https version of your blog. This uses a self-signed SSL certificate, and the images might not appear if a browser or proxy is configured to deny access to sites with an untrusted certificate. Please change the links to use http instead.

]]>