Patch Tuesday

Microsoft releases five patches with one critical fix for Internet Explorer

June 12, 2013

Microsoft released five bulletins on its June Patch Tuesday, fixing one critical vulnerability in Internet Explorer.
 

Patch Tuesday sees zero-days in Internet Explorer and Adobe products fixed

May 15, 2013

Microsoft released ten bulletins yesterday fixing 33 vulnerabilities, including the zero-day in Internet Explorer 8.
 

Microsoft recalls patch after blue screen reports

April 12, 2013

Microsoft has acknowledged problems caused by a patch released this week that can cause system errors.
 

Microsoft releases nine bulletins, but no Pwn2Own fixes

April 11, 2013

Microsoft issued nine bulletins to fix 14 vulnerabilities this week; however it left several known flaws unpatched.
 

Microsoft issues seven bulletins for Patch Tuesday, but nothing for Pwn2Own vulnerability

March 13, 2013

Microsoft released seven bulletins last night, containing four patches rated as critical, to fix 20 vulnerabilities.
 

Microsoft fixes 57 vulnerabilities on Patch Tuesday

February 13, 2013

Microsoft released 12 bulletins, five of which were rated as critical, to address 57 vulnerabilities on Patch Tuesday.
 

Microsoft releases seven bulletins with two critical patches

January 09, 2013

Microsoft released seven bulletins on its first patch Tuesday of 2013, addressing 12 vulnerabilities in Windows, Office, Developer Tools and Windows Server.
 

Microsoft to deliver 13 security patches for 26 bugs

February 08, 2010

After a quiet January Patch Tuesday that saw only one security update, Microsoft is back with a vengeance this month.
 

Microsoft patch batch includes fix for zero-day IE flaw

December 09, 2009

Microsoft delivered its monthly security update on Tuesday to rectify 12 vulnerabilities, five of which are present in Internet Explorer (IE) and comprise the most pressing patch to deploy.
 

Eight Microsoft fixes planned for Patch Tuesday

December 05, 2008

Microsoft plans to release eight patches on Tuesday - six for "critical" vulnerabilities - as part of its monthly security update.
 

Attackers target zero-day Microsoft Word bug

July 10, 2008

Hours after releasing four patches as part of its monthly security update, Microsoft warned late Tuesday of a new, zero-day vulnerability in Word that is being actively exploited in targeted but limited attacks.
 

Multiple vendors cooperate to issue DNS design flaw fix

July 09, 2008

A massive domain name server (DNS) design vulnerability that could permit cache poisoning - effectively allowing an attacker to direct users to the website of his choosing - is set to be fixed by an unprecedented synchronized series of multivendor patches.
 

Microsoft Patch Tuesday fixes nine vulnerabilities

July 09, 2008

In its Patch Tuesday update, Microsoft addressed nine vulnerabilities by releasing four security updates, none of which were deemed critical.
 

Microsoft to patch three critical vulnerabilities on Patch Tuesday

June 09, 2008

The software giant plans to release seven patches, of which three of them are rated "critical", in the June round of bug fixes tomorrow
 

Microsoft releases three critical bulletins on Patch Tuesday

May 14, 2008

The software giant has addressed six vulnerabilities in its monthly security update, including those affecting Word, Publisher, Jet Database Engine and Malware Protection Engine.
 

SC Webcasts

Security beyond the (fire)wall

Streaming live on 19th June at 3pm BST

This webcast addresses the technological challenges of maintaining full control of your most sensitive information - even once it goes beyond the firewall - while maintaining the freedom and flexibility necessary to allow your staff and other stakeholders to work as efficiently as possible. Tune in for free to hear from our regular and popular guest speaker, Bola Rotibi from (ISC)2 application security advisory board. To secure your place, please click here.


The truth about vulnerability management: Compliance checkbox or real protection?

Streaming live 2nd July at 3pm BST

How often are you assessing network vulnerabilties? Is your current vulnerability management program merely a compliance checkbox for auditors? Tune into this webcast live to hear from Joerg Weber, head of attack monitoring, Barclays, Lee Barney, an information risk consultant, and Skybox's Michelle Cobb on how you can prioritise vulnerabilities in a way that makes sense for your specific threat posture. Secure your free place here.

SC Featured Webcast

Employee file sharing: the good, the bad and the ugly

This recently held webcast unveiled the full results from the latest data security survey, where it was revealed that 50 per cent of the information security professionals asked said that they had 'no real visibility' of how data is being sent within and outside the company. Guest speakers included the director of information security from Monster.co.uk and the ISO from Atos. If you missed the live show, you can tune into the on-demand video here.

SC Whitepapers

Java security: Balancing existing testing platforms with open source solutions

In a rush to get new products out to market quickly, companies expose themselves to the risk of software failure. Java developers often turn to open source solutions to help protect themselves from risk. This new whitepaper explains how you can use your existing testing platforms alongside open source solutions to fix those issues related to both security and quality within your Java code. To download the paper for free, please click here.


DDoS and downtime: Considerations for risk management

The purpose of this paper is to start a conversation about the often overlooked risk of downtime caused by DDoS attacks and to provide sufficient content for risk managers to account for the DDoS threat as they evaluate risks to their day-to-day operations and long-term mission. To read the paper in full, please download it for free here.


Ponemon 2012 Global Encryption Trends Study

In Ponemon's recent Global Encryption Study, the organisation surveyed 4,205 information security professionals across seven countries to examine how encryption has evolved over the last eight years. The study focused on data protection priorities, budgeted expenditures for encryption and the types of encryption technologies involved, with the findings revealing some interesting insight into the relationship between encryption and its impact on the security position of organisations. To read the full report for free, please download it here.


Advanced spear phishing: The rise of industrial phishing attacks

With phishing still the most common form of attack, hackers are now engaging in industrial-scale phishing attacks that leverage sophisticated customisation and delivery techniques. Borrowing tactics from cloud computing and database marketing, this study looks at longline phishing - an advanced form of spear phishing, which has higher clickthrough and penetration rates than traditional attacks, potentially causing a higher risk to IT security departments across the world. To read the study for free, please click here.


Home | News | Products | Whitepapers | Jobs | Subscribe | Contact Us | About Us | Advertising | Sitemap | Editorial | Subscribe to our RSS feeds RSS

This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.

Your use of this website constitutes acceptance of Haymarket Media's Privacy Policy and Terms & Conditions