Simply throwing more staff at the patching problem won’t cut it, a study suggests. To paraphrase English novelist Jane Austen, it is a fact universally acknowledged that organizations must act with alacrity when it comes to applying software patches to their systems. A number of recent notorious incidents – think the WannaCryptor malware outbreak or the breach … More Rough patch, or how to shut the window of (unpatched) opportunity
Three years after Microsoft said it was ending support for Windows XP, it announced on May 12th 2017 that it was issuing a security update for the operating system, as well as Windows 8.0 and Windows Server 2003, both of which are in custom support only. That’s two months after the same patch was released for supported versions of Windows. The … More Patching: Your questions answered
Our friends at Heimdal Security sometimes put together what they call an ‘expert roundup’ blog article. It’s an idea I like a lot: many security blogs are reluctant to give credit to competitors or include any links that will lead the reader away from their own site. I can see the PR logic behind that, … More Vulnerabilities, exploits and patches
By now you should be settled back at work after the holiday break. Are you ready for 2016? I hope you’re sitting comfortably, because from the security point of view it’s bound to be a bumpy ride. Microsoft Yesterday was the second Tuesday of the month and you know what that means – Patch Tuesday … More Security holes found in Windows, Office, Internet Explorer, Adobe… Start patching now!
So-called ‘bug bounties’ are offered by some of the world’s largest websites and software companies to ensure that software bugs are found and fixed by friendly security researchers, rather than by malicious hackers who could use the same flaws to cause significant damage. Bug bounties are a relatively new phenomenon but, in recent years, have … More The world’s biggest bug bounty payouts