The lesson of Sandworm: patched but not protected

You diligently apply each and every patch as soon as it’s released – the Sandworm attack shows us it still doesn’t mean you’re protected from the exploits that those patches are designed to address.

Continue reading

Fixing the fix: Microsoft reissues SChannel patch

We reported previously that many of our users and many people posting to forums across the web were seeing problems caused by last week’s patch for a serious SChannel vulnerability, MS-066 (KB2992611). It turns out the problem was caused not by the actual vulnerability fix, but by the new ciphers that were added to the Transport Layer Security (TLS) implementation by the patch.

Continue reading

Patch Tuesday one week later: update woes and out-of-band patch release

I’m writing this on “Aftermath Tuesday” – one week after this month’s huge slate of patches came down the pike from Microsoft. Reports of various problems with various patches have started to trickle in, and they range from annoying to crippling.

Continue reading

US-CERT warns iOS users of Masque attack

Last week, researchers with California security company FireEye announced a new bug called Masque and released a video that demonstrates how an iPhone could be compromised through this new attack.

Continue reading

Adobe joins the patch party in a big way

Microsoft isn’t the only software vendor that came out with a gargantuan update release on Patch Tuesday; Adobe joined in, releasing only one update but that update fixes 18 separate vulnerabilities.

Continue reading

Have wireless, will travel

In this article, we’ll take a look at some of the technological innovations that are making travel a little more pleasant.

Continue reading

November 2014 – Microsoft Patch Tuesday

Microsoft threw us a bit of a curve, releasing “only” 14 of the patches, with two – MS14-068 and MS14-075 – deferred with the label “Release date to be determined”.

Continue reading

Microsoft’s monster update might mean it’s time to rethink your patching strategy

Microsoft is releasing sixteen security bulletins that will address numerous vulnerabilities – but of course that’s only the tip of the patching iceberg.

Continue reading

November Advance Notification: A plethora of patches on the way

November brings us a total of 16 patches from Microsoft. The somewhat good news is that only five of them are rated as critical, with four of those being remote code execution vulnerabilities and the fifth addressing an elevation of privilege issue.

Continue reading

IT Confidential: A Day in the Life

As cloud computing slowly but persistently permeates all of IT, what will a day in the life of the IT pro of tomorrow be like?

Continue reading