My iMac prompted to update my Flash Player (my settings are to allow Adobe to install). The download was identified as containing adware (Mughthesec). I removed the file and went directly to Adobe.com logged into my account and downloaded the Flash Update directly from Adobe.com (https://get.adobe.com/flashplayer/download/?installer=FP_32_Mac_for_Safari_and_Firefox_-_NPAPI&stype...). This file also was identified as containing the same adware.
In researching this I've seen a lot of posts regarding fake links for flash updates containing adware.
I've come to two conclusings:
1. The valid flash update file from Adobe.com scanned with the three separate applications I've used for identify malware/adware and being trigged incorrectly; or
2. Adobe is included adware within their updates for business and marking without advising users.
I'd appreciate if you could clarify this issue.
I just had the same experience, but fortunately my setting is for Flash Player to inform me and let me install. In my case, Clean My Mac popped up immediately after the Adobe file had downloaded and informed me I had downloaded "Snake," described as a "Backdoor" piece of malware. I'm wondering if this is a Flash Player problem or a Clean My Mac problem.
That's for the post. I put the same question to CleanMyMac. I'll update when I get a response.
I also sent a tech support request to MacPaw for Clean My Mac.
Thanks for this. Same problem here with 'mugthesec'. of course it happens on the day when i need to write my academic paper!
Hopefully its resolved soon.
Thank you for reporting. Flash Player installers are run through hundreds of tests including virus/adware/etc testing numerous times along the pipeline to end user delivery. If something were to report positive along the pipeline it'd be removed immediately and not delivered to the end-user.
This post has been reported and we're looking into this. With that said, I've downloaded the installer linked above, uploaded it to VirusTotal and nothing was detected. Results are at https://www.virustotal.com/gui/file/6e28682b1b9bcb9b3363af9fbeac3e3c04218446f8b6cb36d3d4bad7c823c1b7.... You can try the same with the file you downloaded.
Anyone have any updates on this please? I'm too having my flash update flagged for 'Mughthesec' and will not be installing until I know Adobe is not trying to slip adware through the back door.
Have you checked that the file you downloaded has an Adobe signature? That's your protection against a fake being slipped in. Attacks take many forms, even infected wifi routers.
Yes.... does this suggest the file is good and this must be a Macpaw issue with CleanMyMacX?
Authority=Developer ID Application: Adobe Inc. (JQ525L2MZD)
Authority=Developer ID Certification Authority
Authority=Apple Root CA
Timestamp=25 Aug 2020 at 21:43:59
I have fired off a ticket with them. I'll update the page when I hear from them. Thanks for your help with this.
I was able for very the signature and am sure there are not issues.
Funny thing though, this time CleanMyMac identifed OSX bundlore adware. I've sent them a ticket told them if they didn't correct their software I would stop using and demand a refund.
We area aware of this issue and CleanMyMac is the only vendor flagging the installer as malicious. the signature information posted above is correct.