Third party patch and vulnerability roundup – July 2014

Starting off with a follow-up on a Microsoft patch that caused some problems, here’s our third-party roundup for July.

Continue reading

Poisoned Apple: Is iOS intentionally insecure?

Apple is being accused as having intentionally built exploitable vulnerabilities into their iOS mobile operating system, to serve as a “back door” that would enable law enforcement agencies to surreptitiously glean certain user data from the devices.

Continue reading

WordPress plug-in vulnerability is being actively exploited

A vulnerability was discovered in a popular WordPress plug-in, and according to reports it has already been exploited to the tune of as many of 50,000 web sites.

Continue reading

The scariest security stories of 2014 (so far)

I’m still not used to typing “2014” in the date field yet, but I just looked up the other day and realized that this year is already half over. An assessment of the first two quarters shows that on the security front, there’s both good news and bad news. The good news is that software […]

Continue reading

Microsoft Patch Tuesday roundup – July 2014

We’re looking at six security bulletins covering 29 separate vulnerabilities, with two of them rated as critical. Three are designated as important and the final one has been classified as moderate.

Continue reading

Microsoft Advance Notification – July 2014

This month, I’m writing this blog post at 1:00 a.m. on U.S. Independence Day – the 4th of July – on a cruise ship in the middle of the ocean in route to beautiful Skagway, Alaska. Holiday or not, IT pros are looking for a sneak preview of what we’re facing on Patch Tuesday, and […]

Continue reading

Datanapping Alert: Ransomware holds your most critical files hostage

Cyber attackers have grown much more sophisticated – and a great deal more mercenary – over the years. Once upon a time, most malware was written with the objective of having a perverted type of amusement. Malicious code authors enjoyed wreaking havoc and destroying others’ data and operating systems in the same way vandals enjoy […]

Continue reading

Third party patch and vulnerability roundup – June 2014

  We’re well into summer and the longest day of the year has come and gone. But for IT pros, the longest days are often patch days, which involve testing, roll-out, and – if you’re unlucky – troubleshooting problems caused by the patches.  This month’s Patch Tuesday appeared to go fairly smoothly at first, until […]

Continue reading

All my nerdy friends are getting buff

Everybody knows the stereotype: When you think of a computer geek, the image that comes to mind isn’t that of a Charles Atlas bodybuilder or a curvy centerfold model. Sitting in front of a monitor all day doesn’t usually impart a healthy glow to the skin and too often, the only exercise we get is […]

Continue reading

Bad Office fix: when the cure is worse than the disease

It’s the reason both individual computer users and admins regard patch day with at least a little trepidation: the prospect that an update that’s supposed to make our software better will, in fact, make it worse or even render it useless.  You might remember the problems caused by some Office patches that were released last […]

Continue reading