I was not really joking around in our April Fools post when I mentioned that “if your device runs Adobe Flash it is not a matter of if you will be hacked but when.” One of the questions I have asked RIM a few times is to explain how the managed to secure Flash on the BlackBerry PlayBook to an acceptable level. Flash and its components (AIR/FLEX) by proxy are notoriously exploited on a regular basis. Just take this new critical security vulnerability in Flash that is already being exploited on Windows machines through Word document files. This comes almost exactly a month after the previous exploited vulnerability.
This is pretty much standard business for Adobe which makes me wonder what steps RIM has taken to prevent this in the BlackBerry PlayBook. Adobe admits that this new vulnerability and previous vulnerability also leaves Android devices vulnerable though they already have a laughable security model that is designed to be broken.
Which leaves me wondering if RIM managed to cook up some QNX powered goodies to plug the inevitable Flash exploit. RIM has been mum on the subject so far and I have confirmed with some friends who are large enterprise customers of RIM that they are promising it is secure though not explaining how. The reason I worry is because previously the BlackBerry OS had a bit of security by obscurity going by not having public source code but that all changes with QNX which has had a relatively public source code for years.
On the other hand people have been telling me that consumers don’t really care about security. That is why they don’t care if their iToy or HackDroid can be jailbroken/rooted with one click. So I thought I would ask all of you if security/privacy matters to you and how that figures into your purchases?