Security Advisor

Adobe Realizes Not Patching Software Is Bad

So last week Adobe warned customers that there were a bunch of vulnerabilities in its family of Creative Suite software (Photoshop, Illustrator and Flash Professional). And instead of saying when users could expect a fix, Adobe told customers to just purchase the latest, more secure version of its software.

Now we're not talking about software that could have been found on Windows 98 -- this is software that, in the case of Photoshop 5, only came out two years ago.

I don't know about you, but if I buy pricey software like Adobe's Creative Suite, I would want to have it supported a bit longer than a pair of sneaker's lifespan.

Actually, I do know about you, as evident by the huge "S" storm kicked up by outraged customers online. And it wasn't just a vocal minority of angered customers (who usually end up making the loudest noise online), but security firms obviously didn't like Adobe's security advice.

"What the heck is wrong with Adobe?  It's not like Photoshop is a ninety-nine cent app, it costs hundreds of dollars to purchase," wrote nCircle's Andrew Storms in a blog post.  "And the risk for the bug in Photoshop is high; the exploit code has already been made public. These security tactics make Adobe software look like ransom ware."

Well, Adobe wised up and said that it is currently working on fixes for its older software. However, it's unclear whether these fixes will mend its broken reputation.

About the Author

Chris Paoli is the site producer for Redmondmag.com and MCPmag.com.

Featured

  • Microsoft Adding Google G Suite Migration in Exchange Admin Center

    Microsoft's Exchange Admin Center will be getting the ability to move Google G Suite calendar, contacts and e-mail data over to the Office 365 service "in the coming weeks."

  • Qualcomm Back in Datacenter Fray with AI Chip

    The chip maker joins a crowded field of vendors that are designing silicon for processing AI inference workloads in the datacenter.

  • Microsoft To Ship Surface Hub 2S Conference Device in June

    Microsoft on Wednesday announced a June U.S. ship date for one of its Surface Hub 2S conferencing room products, plus a couple of other product milestones.

  • Kaspersky Lab Nabs Another Windows Zero-Day

    Kaspersky Lab this week described more about a zero-day Windows vulnerability (CVE-2019-0859) that its researchers recently discovered, and how PowerShell was used by the exploit.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.