Rosetta Flash

What is Rosetta Flash?

Rosetta Flash is the most recent exploit in Adobe Flash.  Rosetta Flash is executed/exploited when connecting to a website containing  malicious code.  That malicious code grabs usernames and passwords stored on your computer to log into your account on other vulnerable websites such as Ebay, Tumblr, Instagram, etc.

How do I protect myself against Rosetta Flash?

Upgrading to the latest version of Abobe Flash on your computer will resolve the issue.

What happens if I get caught by Rosetta Flash?

You will expose your authentication credentials (username and password) to hackers that will be able to log onto any website where those credentials are stored on your computer, such as Ebay, Tumblr, Instagram, etc.

Is there anything I can do to protect myself from future attacks such as this?

Yes, never check the “remember me” or “keep me logged on” settings on websites.  Always enter your username and password when connecting to websites that require a username and password.

Technical Explanation:  When you check these settings a “cookie” is stored on your computer containing your authentication credentials for the website in question.  This particular vulnerability collects your authentication credentials from those cookies and then can log into those websites impersonating you.

Technical Solution:  Deleting and/or preventing the storing of cookies will also mitigate this type of attack, although may break some websites that depend on cookies to function correctly.

Are the vulnerable websites doing anything to prevent this?

Yes, Twitter and Google have already patched their sites and others will follow soon.

What do I do if I don’t know how to fix this myself, or if it applies to me?

Your best course of action is to contact your IT professional, or AbleIT for assistance.