Google fixes Flash's security issues ahead of Adobe

March 21, 2011: 12:59 PM ET

Google's record on Chrome browser security is impressive, and that is important.

Google (GOOG) today fixed the recent Adobe (ADBE) Flash Zero-day exploit in which a devious hacker could embed a malicious Flash file in an Excel document and if opened could compromise Windows-based computers.  Microsoft says that Office 2010 users aren't vulnerable.  Apple's (AAPL) Macintosh users  are not vulnerable to this particular attack either, though others could be developed using this vulnerability.

Adobe's Flash detractors certainly have a good argument against using the software if an exploit exists in the wild and Google has the only current fix.

But it also shows that Google's browser security model works well.  Google controls the version of Flash in Chrome and controls updates to the software.  In this case, it has pushed and updated before Adobe has.

Google is coming off a ConSecWest where no one was able to hack its Webkit-based browser.  As is tradition, Apple's Safari Browser (also based on WebKit) was hacked within seconds of the conference opening.  Apple issued security updates the same day as the hacking so it isn't clear if the updates would have saved its browser.  Microsoft's (MSFT) Internet Explorer and mobile versions of the Webkit browser on both Apple's iOS and RIM's (RIMM) Blackberry were also hacked.

One easy fix: remove Flash.

Daring Fireball's John Gruber reccomends removing Flash from your computer and instead using Google Chrome (with its embedded Flash player) to handle any sites with Flash.

Google has a lot invested in Chrome and having a great security pedigree will only improve its chances of gaining market share, especially in Enterprise.

Google has aimed its ChromeOS operating system squarely at enterprise where it hopes to undercut Microsoft on price, performance and ease of administration. You can bet that CIOs that are considering the deployment  ChromeOS take security very seriously.

More from Fortune:

Join the Conversation
About This Author
Seth Weintraub
Seth Weintraub

Google went from searching the Web to worming its way into nearly every facet of business and government. Seth Weintraub unveils where the company is going, who it's competing with, who it's about to compete with and how market forces push the company to veer or adhere to its Don't Be Evil motto. For 15 years, Weintraub was a global IT director for a number of companies before becoming a blogger.

Email Seth
Current Issue
  • Give the gift of Fortune
  • Get the Fortune app
  • Subscribe
Powered by WordPress.com VIP.