Patch Tuesday: October Update Includes Sleeper Vulnerability

Patch Tuesday: October Update Includes Sleeper Vulnerability Microsoft released 59 updates for its monthly Patch Tuesday Update. Beware of a sleeper vulnerability and a patch that is being weaponized. Microsoft’s October 2019 Patch Tuesday Fixes 59 Vulnerabilities Microsoft has released 59 updates for its monthly Patch Tuesday Update, much less than September’s release of 80 updates. However,…

The U.S. Government’s Patch Management Problem

The U.S. Government’s Patch Management Problem Businesses are not the only ones experiencing the constant threat of data breaches. The U.S. government has its own fair share of patch management problems. The Ponemon Institute’s 2018 study of enterprise security and vulnerability found that 57 percent of the organizations queried claimed a data breach had occurred…

Still Relying on WSUS? Here’s Why You Can’t

Still Relying on WSUS? Here’s Why You Can’t In one of the worst patch rollouts in Windows history, Microsoft’s surprise zero-day patch for IE was released, but not released, then pushed sporadically, but only in preview, and never explained. Microsoft’s Patch Disaster Last week, Microsoft ordered users to immediately download an “emergency” out-of-band security patch…

Microsoft Releases Out-of-Band Security Updates

Microsoft Releases Out-of-Band Security Updates Microsoft’s out-of-band security updates address two vulnerabilities, including a zero-day vulnerability in the Internet Explorer (IE) scripting engine. Microsoft Urges Users to Install Emergency Patches Microsoft released an emergency set of cumulative updates for Windows 10 devices running the May 2019 update (Windows 10 version 1903) and earlier. The out-of-band…

Patch Tuesday: Massive September Updates

Patch Tuesday: Massive September Updates Patch Tuesday is officially here. Microsoft has published 80 security fixes, but which patches should you prioritize this month? September Patch Tuesday Release Microsoft have released 80 patches today covering IE, Edge, ChakraCore, Windows and Office. There are 17 rated Critical and 62 Important with only 1 rated Moderate. Urgent: Public and Exploited There are a total of…

CVE and CVSS: Explained

CVE and CVSS: Explained CVE and CVSS are some of the most commonly misunderstood aspects of patching today. Explore the differences and see how they can affect your patching strategy. Although many IT managers are familiar with these terms, CVE and CVSS are some of the most commonly misunderstood aspects of patching today. These two…

Microsoft Warns that End-of-Life is Near for 1703

Microsoft Warns that End-of-Life is Near for 1703 Microsoft is reminding enterprise admins that Windows 10, version 1703 of Enterprise and Education editions, is reaching end-of-life on October 9, 2019. Say Farewell to Patches for 1703 in October Microsoft is reminding enterprise admins that Windows 10, version 1703 of Enterprise and Education editions, is reaching…

August Third-Party Patches and Security Updates

August Third-Party Patches & Security Updates Explore the latest third-party and security updates and find out which patches should be prioritized this month to protect your environment. Which third-party patches should you prioritize? VideoLAN has released an update this week to resolve two high-risk vulnerabilities in the VLC media player application. The discovered vulnerabilities allow…