Dodgy "Update Flash Player" site?

On Holiday

On Holiday

On Holiday

Soldato
Joined
29 Dec 2009
Posts
7,290
Good day! Happy New Years!

Just wondering if anybody knows anything about this dodgy page telling me to update Flash Player? What's likely to be causing it, etc?

It's appeared on a few websites now.. But the most common one is this picture uploading website.

http://www.pic-upload.de/view-21772236/arma2oa-2013-12-29-11-48-03-97.jpg.html
^ If you click that, do you get the below too?

AS59fCo.png

My dad has also said he gets the same thing on his PC (not for the same websites, obviously!)

Just tried it in a new virtualmachine and it's come up with a dodgy java update page instead! So I'm pretty sure it's nothing dodgy on the PCs.. Really weird how it's doing it a lot lately even on YouTube now and then!

(Java/Flash is up to date on all machines tested so far).
 
Last edited:
get that in firefox, but its fine in chrome. note, that appears in firefox after the page as loaded. It's definitely dodgy.

ediT: OH, I have ad blocker installed in chrome. its one of the ads doing it, there's another ad that displays a full page screen like that with same update dialogue but for java instead.

ECQCQR0.jpg
 
Last edited:
james.miller said:
get that in firefox, but its fine in chrome. note, that appears in firefox after the page as loaded. It's definitely dodgy.
Click to expand...

Thanks for checking :)

I get it in Chrome too.. Do you have any Adblock plugins active? Forgot to mention in OP that my dad has had this on a few random YouTube videos too.
 
teaboy5 said:
I know it's shocking that people have installed something that is required by some websites.
Click to expand...

It's not required by any websites of significance, it's an obsolete technology for web apps that poses one of the largest security risks on the internet.
 
Energize said:
It's not required by any websites of significance, it's an obsolete technology for web apps that poses one of the largest security risks on the internet.
Click to expand...

It's still required by a lot of sites. I know this may come as a shock, but not everyone on the internet goes to the same sites you do!
 
teaboy5 said:
It's still required by a lot of sites. I know this may come as a shock, but not everyone on the internet goes to the same sites you do!
Click to expand...

Ironically I'm a java developer and haven't come across any websites requiring it in the last ten years.

It's really besides the point though. Sites which require Java should be avoided and the JRE removed from home users PC's.
 
Energize said:
Ironically I'm a java developer and haven't come across any websites requiring it in the last ten years.

It's really besides the point though. Sites which require Java should be avoided and the JRE removed from home users PC's.
Click to expand...

So you're a java developer but don't know of any sites using it?

Jesus you talk some ****e.
 
Last edited:
If your on chrome enable phishing and malware in the settings.


jave is run on like 60% of websites today but you should not be forced to install as its more flash based on half the sites people go to.

agree to above comment.^^^
 
Energize said:
Continue to miss the point by all means...
Click to expand...

No one is missing your point. We all know Java is unsafe, but as I said it's still required by some sites. For example I know of one banking website right away that would be useless if someone didn't have Java.

But to say everyone should remove it is just plain silly. It's nearly as bad KIA going on in the AV thread about not needing AV at all.
 
BadPil0t said:
Good day! Happy New Years!

Just wondering if anybody knows anything about this dodgy page telling me to update Flash Player? What's likely to be causing it, etc?

It's appeared on a few websites now.. But the most common one is this picture uploading website.

http://www.pic-upload.de/view-21772236/arma2oa-2013-12-29-11-48-03-97.jpg.html
^ If you click that, do you get the below too?

AS59fCo.png

My dad has also said he gets the same thing on his PC (not for the same websites, obviously!)

Just tried it in a new virtualmachine and it's come up with a dodgy java update page instead! So I'm pretty sure it's nothing dodgy on the PCs.. Really weird how it's doing it a lot lately even on YouTube now and then!

(Java/Flash is up to date on all machines tested so far).
Click to expand...

I also had something like this from a site that wanted to upload an update to the Adobe Flash Player before seeing a vid clip. My security software blocked and deleted it.
 
teaboy5 said:
It's still required by a lot of sites. I know this may come as a shock, but not everyone on the internet goes to the same sites you do!
Click to expand...

Name a few as the only useful thing I have seen that needs it is vassal, and I don't use vassal because it needs Java, which is a shame, as I'd love to play WH online against the guys here.
CBA with the risk.
 
I can’t work from home without Java installed because the remote connection software needs it. Is a rebranded tool if I recall so probably used by a lot of companies.
 
Hades said:
I can’t work from home without Java installed because the remote connection software needs it. Is a rebranded tool if I recall so probably used by a lot of companies.
Click to expand...

That's different to a web app, and a private JRE can be used for applications like that, I deploy private JRE's with my java apps because then the user does not need to install a public JRE which can be accessed by any application and used maliciously. Java along with Adobe Reader and Adobe Flash forms the triangle of evil as far as web vulnerabilities are concerned.

Very few average users will have programs requiring java nowadays, it's mainly used for business applications and servers.
 
Last edited:
You must log in or register to reply here.
Back
Top Bottom