Adobe's vice president of product development, Govind Balakrishnan, said the firm had chosen to end Flash because other technologies, such as HTML5, had "matured enough and are capable enough to provide viable alternatives to the Flash player."

In 2014 it was used each day by 80% of desktop users, according to Google. The current figure is just 17%.

C has become a monster. It gives its users far too much artillery with which to shoot their feet off. Copious experience has taught us all, the hard way, that it is very difficult, verging on “basically impossible,” to write extensive amounts of C code that is not riddled with security holes.

If you’re a developer you already know where I’m going, of course: to tout the virtues of Rust, which is, in fact, a viable C/C++ replacement. Two years ago I suggested that people start writing new low-level coding projects in Rust instead of C.

Currently, Grsecurity is a commercial product and is distributed only to paying customers. My understanding from several reliable sources is that customers are verbally or otherwise warned that if they redistribute the Grsecurity patch, as would be their right under the GPL, that they will be assessed a penalty: they will no longer be allowed to be customers, and will not be granted access to any further versions of Grsecurity. GPL version 2 section 6 explicitly prohibits the addition of terms such as this redistribution prohibition.

Windows 10 testers can now access a preview of the changes that include a new controlled folder access feature. It’s designed to only allow specific apps to access and read / write to a folder. If enabled, the default list prevents apps from accessing the desktop, pictures, movies, and documents folders.

The new controlled folder feature is designed to protect against viruses and ransomware from locking machines out of certain folders.

This "high" level security notice is regarding an out-of-bounds write in systemd-resolved that could allow a remote attacker to crash the daemon or execute arbitrary code via a DNS response. This bug has been present since systemd 223 and was still present in systemd as of yesterday.

Microsoft claims "no known ransomware" runs on Windows 10 S, its newest, security-focused operating system.

It took him a little over three hours to bust the operating system's various layers of security, but he got there.

In the end, Microsoft said that "no known ransomware" works on the operating system, but by gaining "system"-level access, we showed that it's entirely possible to take control of the machine to install ransomware.

For the applications that were not compatible, Microsoft built a feature that lets users update their PCs and then reinstall a new version of the anti-virus software.

"To do this, we first temporarily disabled some parts of the AV software when the update began. We did this work in partnership with the AV partner to specify which versions of their software are compatible and where to direct customers after updating," Mr Lefferts writes.

San Francisco-based Slack could be valued at at least $9 billion in a sale, the people said. An agreement isn’t assured and discussions may not go further, said the people, who asked not to be identified because the matter is private.

Slack raised $200 million in its latest funding round in 2016, led by Thrive Capital Management LLC, valuing it at $3.8 billion. The company, which introduced its business chat software in 2013, has recently turned its eye to bigger users.

The method—which was used in a recent spam campaign that attempted to install a bank-fraud backdoor alternately known as Zusy, OTLARD, and Gootkit—is notable because it didn't rely on macros, visual basic scripts, or JavaScript to deliver its payload.

Instead, the delivery technique made use of the Windows PowerShell tool, which was invoked when targets hovered over a booby-trapped hyperlink embedded in the attached PowerPoint document.

Users around the world continue to run older operating systems and unpatched software applications. That was one of the findings of Duo Security's 2017 Trusted Access Report, released on June 5.

Adobe's Flash is also a problem, with 53 percent of endpoints analyzed by Duo Security running out-of-date and vulnerable versions.