how to make the Flash update program stop interrupting what I'm typing

Report · Dec 14, 2018

For a week I have been watching the reminder application start up out of nowhere and completely interrupt whatever I'm working on with a Big Window.

Finally I went ahead and installed the update.

But I don't appreciate having this Big Window coming front and center on my monitor while I'm working, causing my typing to stop, etc.

Seriously. I get that the update might be important, but it's really not necessary to throw Big Windows up in a user's face that completely interrupts what the user is doing, and even taking focus from the keyboard. There is no need for that.

How can I stop it from happening again? Can the application at least just come up in a window that doesn't immediately gain focus and interrupt what ever a person is trying to do on their computer?

Report · Dec 14, 2018

Flash updates don't really have a big window, so far as I know. Also, Flash updates that I see happen just after a reboot. You might have been tricked by a fake update. What did it look like?

Report · Dec 15, 2018

it was very similar to the picture in the CNET link at the bottom of this post. But I can’t say it was exactly it.

Half an an hour after doing the update it popped up again.

I removed the the flash player from Mac and reinstalled it and turned on automatic adobe updates, so I guess I’ll see if it happens again.

I use adobe CC apps, and I remember a time when the manager would often throw up messages like this but it seems that they stopped doing that years ago, so you might be right.

Is is there a trustworthy malware tester to see if my computer was attacked? I feel skeptical about the software that shows up as a solution to this problem in page after page of google results.

another question, is it safer to let mac system preferences automatically update flash? I had it set so that it would notify me about updates. i changed it to happen automatically, but now I’m seeing that this article recommends not enabling automatic updates. So I’m not sure what is better.

All I can find is tons of tech articles and blog entries about how everyone should worry about the problem but don’t give a solution, and websites I have never heard of that promise to fix the problem, which at a glance don’t seem reputable or familiar.

Looking through the system monitor isn’t helpful because there is so much stuff in there these days that it feels like it would take weeks to sort through it and see if everything is legitimate.

How to determine if a Flash update notification is legitimate - CNET

Report · Dec 17, 2018

The window in that article is the one you see when you actually execute the installer. There's no reason that it would just pop up if you're just typing along minding your own business...

The solution is to enable automatic updates for Flash Player, and then go about life ignoring any other notification update dialogs, knowing that your Flash Player is current. (In the world where browsers block Flash by default, you may need to modify that to something along the lines of "Consider any update notification to mean that you should enable Flash in your browser", as that behavior invalidates assumptions made by a lot of websites that "if Flash isn't visible from JavaScript, then it must not be installed, and we should tell the user to download it". In 2018, it's probably installed, but the browser is blocking Flash by default.

Here's the general "how to enable Flash in your browser" guide:

https://helpx.adobe.com/flash-player.html

Without a screenshot, I can't really tell you much about the "big window". What you're describing is weird. Forensic experts are expensive.

Here's the guidance I usually give to people that have downloaded malware. You'll ultimately have to make a gut-check about whether or not your machine is trustworthy, or shell out a lot of cash (think lawyer rates) for someone to exhaustively examine the machine. That will probably be time-consuming.

----

Sorry this happened to you. I'm going to leave some advice here for other folks that may run across this.

Unfortunately, because Flash Player is installed on billions of computers, it's a common target for impersonation for people distributing malware.

As an industry, we've done a pretty good job of defending against technical attacks that allow bad guys to install software without your authorization. In 2018, it's really difficult to do (assuming you're running a modern operating system and not something from 2005, in which case, you should get on that).

The result is that human factors are now the path of least resistance. It's easier to trick you into installing something on behalf of the attacker, vs. figuring out how to defeat all of the security stuff required to do it without your express permission.

In general, you're better off setting everything to update automatically. You can then go through life assuming that any update notifications you get are bogus. This is actually what we strongly recommend, and it generally applies to anything tasked with handing untrusted communication (the operating system, your web browser, flash player, etc.). The inconvenience of something functional breaking because of an update pales in comparison to the pain of recovering from identity theft.

Here are a few guidelines that will minimize your risk of getting tricked into installing malware:

- Wherever possible, use your operating system's App Store for downloading and updating software

- When software you want (like Flash Player) isn't available from the App Store for your operating system, always navigate directly to the vendor's website. If you need to search for the download, that's cool -- but avoid "download" sites, and find the vendor's actual download link

- Never download stuff from a link in an email or update dialog. Type it in. It's easy to disguise fake URLs in links using internationalized characters and things (e is not the same as è, but it might be really easy to miss if you're not looking closely). If it's a link from a URL shortener

service like tinyurl.com/abcde or bit.ly/abcde, you don't know what the end result is going to be, and you're probably wise to just head to Google to find what you need instead.

- When the software offers automatic updates, just turn them on and stop worrying about maintaining all the moving parts running on your computer. The threat landscape is so much different than it was 10-15 years ago. Enable updates so that you're getting critical patches as soon as they become available. Be confident that any subsequent update notifications are probably fake, and act accordingly (either ignore them, or consult the vendor for guidance before doing anything).

For Flash Player specifically:

Always download Flash Player from here: https://get.adobe.com/flashplayer/

When you install, choose the default option of "Allow Adobe to Install Updates (recommended)", and we'll keep it updated for you.

Google Chrome ships Flash Player as a built-in component, and keeps it updated automatically. There's nothing separate to download, install or configure.

Microsoft Edge and Internet Explorer on Windows 8 and higher also include Flash Player as a built-in component of their browser, and updates are handled automatically through Windows Update. Again, as long as Windows Update is enabled, there's nothing to download or configure.

Also, while you've manually cleaned up the stuff that you can see, you installed malware on your machine. There's a large universe of unknown unknowns, but the malware guys at this point are generally professionals. They test against the popular antivirus and cleanup tools. While you've removed the obvious visible signs of the malware infection, you're putting a lot of faith into the tools that you used. This sort of requires a gut-check on your part about what your risk tolerance and confidence level is. It also depends on what you do with the computer (health care, banking, etc.). Good malware is going to first establish a foothold, but the second order of business would be to ensure resilience. Without an exhaustive (and expensive) forensic analysis, there are no guarantees that you've eradicated everything that was installed.

If it were me, I'd probably back up all of the critical data on the machine and then burn the whole thing down and start from scratch (e.g. format the hard disk, reinstall the operating system and applications from pristine sources, install a reputable antivirus utility, scan my backups and then restore them. I'd then go buy a password manager like LastPass/OnePass/KeyPass/etc. and set about ensuring that I have unique, strong passwords for each of the important online services that I use (including any email services that could be used to reset those passwords), and set up two-factor authentication wherever it's offered.

Report · Dec 18, 2018

Thanks for the suggestions and information.

So so just one follow up question, is there any chance that with flash player set to notify about updates in system options in Mac high Sierra with the most recent updates applied that this would result in the install request window that they show in the linked CNET article popping up as the notification? I always have as many system notifications turned off as possible, badges, alerts, etc. so would a window like that be the normal way for the legitimate flash player update notification to occur?

Or is it safe to say that if a window like this pops up and takes focus unexpectedly that it is definitely illegitimate?

Report · Dec 18, 2018

Without actually seeing it, I'm just guessing.

How to create a screenshot in the Adobe forums:

https://forums.adobe.com/docs/DOC-7043#jive_content_id_How_do_I_attach_a_screenshot

how to make the Flash update program stop interrupting what I'm typing

1 Correct answer