PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Ransomware Attacks Prompt Emergency Flash Fix

The company said it was aware that some users have already been affected by ransomware that exploits the flaw.

Tom Brant
 & Tom Brant Managing Editor

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

Adobe issued an emergency update to its Flash software on Thursday to correct a security flaw that left it vulnerable to ransomware attacks. As early as March 31, security researchers warned the company about the bug, which allows hackers to encrypt a user's data and demand payment to unlock it, Reuters reports.

Adobe said it was aware of reports that the flaw was being actively exploited on systems running Windows 10 and earlier with Flash Player version 20.0.0.306 and earlier. As with routine Flash patches, some browsers like Chrome and Edge will automatically apply the update, while others will have to wait for a prompt or download the fix manually.

"Zero-day" vulnerabilities, which exploit a flaw before the software author can fix it, are relatively frequent occurrences with Flash. The previous one was fixed via an emergency patch less than a month ago. Flash troubles have led security experts to recommend that users uninstall it, and some types of Flash content are blocked by default in the Chrome and Edge Web browsers.

A Trend Micro blog post last month revealed more details about the vulnerability, which talks to users via their computer speakers, advising them that their "documents, photos, databases and other important files have been encrypted."

In addition to exploiting widely used consumer software like Flash, ransomware authors have been also been attacking high-value targets like hospitals in recent months. Some victims have found it cheaper and faster to pay the ransom than to recover their encrypted data manually.

About Our Expert

Tom Brant

Tom Brant

Managing Editor

I’m a managing editor at PCMag.com focused on PC hardware. Reading this during the day? Then you've caught me testing gear and editing reviews of Wi-Fi routers, printers, laptops, and tons of other personal tech. (Reading this at night? Then I’m probably dreaming about all those cool products.) I’ve covered the consumer tech world as an editor, reporter, and analyst since 2015.

I've covered most major consumer tech events, including CES, Computex, Google I/O, and IFA. I've also appeared on CBS News, in USA Today, and at many other outlets to offer analysis on breaking technology news.

Before I joined the tech-journalism ranks, I wrote on topics as diverse as Borneo's rainforests, Middle Eastern airlines, and Big Data's role in presidential elections. A graduate of Middlebury College, I also have a master's degree in journalism and French Studies from New York University.

The Technology I Use

While most people buy a phone or laptop and stick with it for years, I’m lucky enough to use devices based on Android, iOS, macOS, and Windows daily as part of my job. As a result, I cycle through lots of tech in addition to my IT-issue work laptop. (Yes, that's a ThinkPad.) Personally, I’ve also owned a lot of tech products both cutting-edge and cringeworthy, from the Nintendo GameCube and the original MacBook to the Palm m105 and the CueCat.

Read the latest from Tom Brant

Read full bio