This site uses cookies. By continuing to browse this site you are agreeing to our use of cookies. Find out more.X

Patch Management

Internet of Things - Top Ten concerns

Internet of Things - Top Ten concerns

Mark O'Neill suggests that his top ten potential vulnerabilities of the Internet of Things (IoT), need to be considered now, before mass deployment.

Patching: the unlocked door

Patching: the unlocked door

With Windows XP fast approaching its end-of-support deadline, many firms are going to be at risk of attack, reports Kate O'Flaherty.

Microsoft rushes out patches to stay ahead of cyber crooks

Microsoft rushes out patches to stay ahead of cyber crooks

By

Microsoft's latest Patch Tuesday security fixes for its products included two last-minute updates that show the company rushing to respond to the escalating pace of cyber attacks.

Patch Tuesday update addresses 24 bugs, including exploited TIFF zero-day

Patch Tuesday update addresses 24 bugs, including exploited TIFF zero-day

By

Microsoft's Patch Tuesday update has been released, giving users a highly anticipated fix for a TIFF zero-day flaw and 23 other bugs affecting company software.

Users do not apply Java patch despite its availability

Users do not apply Java patch despite its availability

By

A recent Java update was only downloaded by seven per cent of users.

Oracle makes plans for Java security

Oracle makes plans for Java security

By

Oracle has said that making Java more secure is a priority, as it lines up regular patch updates.

GFI Software adds patch management to cloud offering

By

GFI Software has added a patch management capability to its GFI Cloud offering.

VMware sells Shavlik product portfolio to LANDesk Software

By

Systems management vendor LANDesk Software has acquired VMware's Protect product family of IT management solutions.

Microsoft releases nine bulletins, but no Pwn2Own fixes

Microsoft releases nine bulletins, but no Pwn2Own fixes

By

Microsoft issued nine bulletins to fix 14 vulnerabilities this week; however it left several known flaws unpatched.

Microsoft issues seven bulletins for Patch Tuesday, but nothing for Pwn2Own vulnerability

Microsoft issues seven bulletins for Patch Tuesday, but nothing for Pwn2Own vulnerability

By

Microsoft released seven bulletins last night, containing four patches rated as critical, to fix 20 vulnerabilities.

Adobe releases patches for zero-day flaws in Reader and Acrobat

Adobe releases patches for zero-day flaws in Reader and Acrobat

By

Adobe has released patches for zero-day flaws in its Reader and Acrobat products.

Microsoft fixes 57 vulnerabilities on Patch Tuesday

Microsoft fixes 57 vulnerabilities on Patch Tuesday

By

Microsoft released 12 bulletins, five of which were rated as critical, to address 57 vulnerabilities on Patch Tuesday.

Microsoft to release seven bulletins next week, but no fix for Internet Explorer

Microsoft to release seven bulletins next week, but no fix for Internet Explorer

By

Microsoft is to release seven bulletins next week, but will not patch the zero-day vulnerability in Internet Explorer.

Four critical patches among six bulletins from Microsoft, including IE9 fix

Four critical patches among six bulletins from Microsoft, including IE9 fix

By

Microsoft released six bulletins on yesterday's Patch Tuesday, including four rated as 'critical'.

GFI Software adds mobile device management into version six of Vipre business

By

GFI Software has added patch management and mobile device management into the latest version of its business edition of Vipre anti-virus.

Flaws patched in Apple's Safari browser and iOS 6

By

Apple has released updates to address flaws in its Safari 6 web browser and iOS 6 mobile operating system.

Microsoft to deliver 13 security patches for 26 bugs

By

After a quiet January Patch Tuesday that saw only one security update, Microsoft is back with a vengeance this month.

IIS issue not a new vulnerability, says Microsoft

By

Microsoft has shot down reports that its Internet Information Services (IIS) suffers from a vulnerability, saying that customers only need to worry if they are running a nondefault configuration of the web server.

Microsoft patch batch includes fix for zero-day IE flaw

By

Microsoft delivered its monthly security update on Tuesday to rectify 12 vulnerabilities, five of which are present in Internet Explorer (IE) and comprise the most pressing patch to deploy.

"Nine-Ball" mass injection attack compromised 40,000 sites

By

A new threat dubbed "Nine-Ball" has compromised up to 40,000 legitimate websites, which are, in turn, infecting users with an information-stealing Trojan, according to security vendor Websense.

Researchers expect widespread exploit of Adobe PDF flaw

By

Attackers are actively exploiting a gaping zero-day hole in versions 9 and earlier of Adobe Acrobat and Reader, the company has warned.

Eight Microsoft fixes planned for Patch Tuesday

By

Microsoft plans to release eight patches on Tuesday - six for "critical" vulnerabilities - as part of its monthly security update.

Report: Nearly all computer users running insecure programs

Only two per cent of computer users are fully patched and the other 98 per cent are running at least one insecure, unpatched program, security firm Secunia said this week.

Worm exploiting Microsoft vulnerability developing into botnet

The "W32.Downadup" worm, exploiting the patched Microsoft's Windows Server Service (MWSS) vulnerability, is the key component in a developing botnet, researchers at Trend Micro said this week.

Four fixes shipped for "critical" RealPlayer holes

By

RealNetworks has issued fixes for four critical vulnerabilities in its RealPlayer program.

Oracle pushes out 45 patches; 14 for Database

By

Oracle on Tuesday released 45 fixes for vulnerabilities across its products, including the widely deployed Oracle Database.

As businesses weigh adoption, new iPhone plugs 13 flaws

By

The second version of the iPhone, released Friday, includes faster internet, GPS functionality and an application store — as well as 13 security fixes.

Sun and Apple offer security updates

By

Sun Microsystems has issued fixes for a number of vulnerabilities in its Java offerings, while six flaws in Apple TV were patched.

Attackers target zero-day Microsoft Word bug

By

Hours after releasing four patches as part of its monthly security update, Microsoft warned late Tuesday of a new, zero-day vulnerability in Word that is being actively exploited in targeted but limited attacks.

Multiple vendors cooperate to issue DNS design flaw fix

By

A massive domain name server (DNS) design vulnerability that could permit cache poisoning - effectively allowing an attacker to direct users to the website of his choosing - is set to be fixed by an unprecedented synchronized series of multivendor patches.

Newsletters