First of all, apologies to bjm and yank. I've been wasting spending most of the last three or four days try to resolve problems with my Secunia PSI, spending so much time that I became brain-dead most of the time - and I'm a PC-dummy to start with!
PSI is not reporting that I have Flash & Shockwave and in one of his posts, the best user-expert (i.e. not an employee), Maurice Joyce, pointed me to this Brian Krebs' blog:
http://krebsonsecurity.com/2015/09/adobe-flash-patch-plus-shockwave-shocker/
Dummy that I am, I thought I was au fait with Adobe issues - I uninstalled their Reader and after installing the latest version of Air, Shockwave and Flash I always double-check to make sure that the old version has been removed. Sometimes it hasn't i.e. back to the bad old days. But to read that Shockwave incorporates an old version of Flash that has 155 vulnerabilities is truly shocking.
As a dummy, I have no idea why I need Shockwave & Flash other than graphics but I've just read their publicity. Shockwave 'permits dazzling 3D games and entertainment, interactive product demonstrations'. Flash lets me 'view interactive content and applications on the Web'. I'm not that much interested in games (OneMoreLevel apart) nor am I the least interested in 3D. But some web sites I have to use (e.g. bank/power supplier) demands that I have Flash. I pointed out to the power supplier that their website demanded a version that was five or six versions out of date.
So for now I need to take a pill (glass of vino), relax, read the blog (especially about using one browser for everyday use and another for those sites that demand Flash. At the moment though this suggests to me that I can still be stuffed on the latter.)
You guys are probably well up on Mr Krebs' article - is it overkill? Is he wrong? I suspect not so what are you all doing to keep safe?