bmhume

5 Lessons Learned from Deploying 100,000,000 Patches A History of Patching It was a cold December afternoon in 2008. A support customer, one of the largest retail outlets in the United Kingdom, was breached. The down-n-up virus, also called Conficker,...

Patch Tuesday: October Update Includes Sleeper Vulnerability Microsoft's October 2019 Patch Tuesday Fixes 59 Vulnerabilities Microsoft has released 59 updates for its monthly Patch Tuesday Update, much less than September’s release of 80 updates. However, that doesn’t mean you can be complacent—there...

The U.S. Government's Patch Management Problem The Ponemon Institute's 2018 study of enterprise security and vulnerability found that 57 percent of the organizations queried claimed a data breach had occurred in the past two years because of their failure to...

Still Relying on WSUS? Here’s Why You Can’t Microsoft's Patch Disaster Last week, Microsoft ordered users to immediately download an “emergency” out-of-band security patch meant to close up a security flaw in some versions of Internet Explorer that can be...

Microsoft Releases Out-of-Band Security Updates Microsoft Urges Users to Install Emergency Patches Microsoft released an emergency set of cumulative updates for Windows 10 devices running the May 2019 update (Windows 10 version 1903) and earlier. The out-of-band security updates address...

Patch Tuesday: Massive September Updates September Patch Tuesday Release Microsoft have released 80 patches today covering IE, Edge, ChakraCore, Windows and Office. There are 17 rated Critical and 62 Important with only 1 rated Moderate. Urgent: Public and Exploited There are a total of 4 vulnerabilities in this...

CVE and CVSS: Explained Although many IT managers are familiar with these terms, CVE and CVSS are some of the most commonly misunderstood aspects of patching today. These two different terminologies are synonymous with operating system, software vulnerabilities, and patching....

Microsoft Warns that End-of-Life is Near for 1703 Say Farewell to Patches for 1703 in October Microsoft is reminding enterprise admins that Windows 10, version 1703 of Enterprise and Education editions, is reaching end-of-life on October 9, 2019. This means...

August Third-Party Patches & Security Updates Which third-party patches should you prioritize? VideoLAN has released an update this week to resolve two high-risk vulnerabilities in the VLC media player application. The discovered vulnerabilities allow an attacker to manipulate the .MKV...

Massive Ransomware Attack Strikes 23 Texas Towns Use Patch Management to Prevent Ransomware Attacks 23 cities in Texas were hit with a coordinated ransomware attack this weekend. A research firm which studies ransomware, has said that attacks aimed at state...