Windows 8.1 early adopters forced to update, or become insecure

Those of us who like to stay on the cutting edge of technology are probably well on our way to fully deploying Windows Server 2012 R2 and Windows 8.1. While it’s great to be on the cutting edge, sometimes that edge is sharp enough to put us on the bleeding edge. That’s where many of […]

Continue reading

Report: Most vulnerable operating systems and applications in 2013

The number of reported security vulnerabilities in 2013 continued to increase compared to 2012. In this post, I provide an overview of the statistics for 2013 related to software security vulnerabilities. These are compiled from data from the National Vulnerability Database (NVD). On average, 13 new vulnerabilities per day were reported in 2013, for a […]

Continue reading

Report: The Most Vulnerable Operating Systems and Applications in 2012

Vulnerabilities in software and operating systems remain a thorn in the side for administrators around the world. A single vulnerability exploited by the bad guys can bring a company to its knees. Maintaining patched systems is a must in today’s ever-changing security landscape. Yet, in number terms, what are we looking at? What is the […]

Continue reading

Security Patching Trends for Major Software Vendors

An important aspect of patch management and your patching schedule is to understand the patch release cycles adopted by the most important software vendors. In this post, we take a look at some statistics on this topic and how patch release cycles have changed over the last few years. The big players in software industry […]

Continue reading

Research: Web Browser War, Security Battle in 2011

No web browser is fully secure and research shows that vulnerabilities in web browsers are a target for hackers and criminals. Patching your browser will reduce the risk of a security breach. And there is good reason why. In 2011, as in 2010, web browsers had the higher number of security vulnerabilities reported compared to […]

Continue reading

The Most Vulnerable Operating Systems and Applications in 2011

As a sys admin, you should try to keep abreast of all the latest and most important security updates for operating systems, applications and so long. Here is an in-depth look at some of the statistics around vulnerabilities that I collated for 2011. To begin with, National Vulnerability Database (NVD) reports 3532 vulnerabilities in 2011. […]

Continue reading

Can Companies Defend Against Targeted Attacks? (Part 2)

In the previous post I wrote about the interesting questions raised due to the hacking of IT security firm HBGary. What should we learn from this incident? So, going back to HBGary – why were they apparently so easy to hack? It is not because they have no clue about security, but rather because they […]

Continue reading

Can Companies Defend Against Targeted Attacks? (Part 1)

The story with all the interesting details about how security company HBGary was hacked earlier this month, published by Ars Technica last week, has made quite some noise with people concerned about IT security. It is a perfect – by the book – example of how to find and use weaknesses in a security system […]

Continue reading

Top Most Vulnerable Applications and Operating Systems in 2010

Analyzing the data on 2010 from National Vulnerability Database reveals some interesting statistics.

Continue reading

Patching Season?

The holidays are coming with a large number of security updates releases from vendors. So far this month we already have the following important updates: Google Chrome version 8.0.552.215 was released on 2nd December with 13 security fixes, 4 of them high severity level Apple QuickTime version 7.6.9 is available from 7th December. It contains […]

Continue reading