About Paul Henry

Paul Henry, is one of the world’s foremost global information security and computer forensic experts in the industry. With more than 20 years of experience, Henry is a seasoned speaker, author and contributor for some of the leading security events and publications.

Follow Paul on Twitter @phenrycissp

 

By: - Forensics and Security Expert

@phenrycissp

XP End of Support Options

March 17th, 2014

The end of support for Windows XP has disastrous potential for those who do not prepare for it. Anyone still on the OS can expect an onslaught of malware after April 8th, 2014 – the date Microsoft will no longer ship security patches for XP. Any bad guy out there with an XP exploit will […]



By: - Forensics and Security Expert

@phenrycissp

Past, Present and Future of Endpoint Security

January 21st, 2014

In the throes of holiday shopping season, 110 million Target customers woke to the news that cleverly placed malware had pilfered their credit- and debit card numbers, along with other sensitive data. We aren’t yet certain who was behind the massive attack on Target and, evidently other large retailers, or how the heist was orchestrated. But […]



By: - Forensics and Security Expert

@phenrycissp

Patch Tuesday Delivers MS Graphics Patch But Leaves Out XP and Windows 2003 Vulnerability

December 10th, 2013

video

Microsoft released 11 bulletins for the final Patch Tuesday of the year. In 2013 we saw a total of 106 bulletins which is an increase of 22% over 2012’s total count. December’s patches include 5 critical, 6 important and they cover 24 CVEs. As promised, Microsoft addressed the Graphics Components vulnerability in bulletin MS13-096. This one […]



By: - Forensics and Security Expert

@phenrycissp

Patch Tuesday Fix for MS Graphics Component Issue But Otherwise Little Holiday Joy for XP and Windows 2003 Users

December 5th, 2013

December’s Patch Tuesday will include 11 security bulletins: 5 Critical 6 Important These 11 bulletins bring us to the close of 2013 with 106 Bulletins released by Microsoft, up from last year’s 83. On Tuesday, Microsoft will address the vulnerability documented by the November Microsoft Graphics Components advisory 2896666. It affects Windows, Office and Lync […]



By: - Forensics and Security Expert

@phenrycissp

November Patch Tuesday Addresses IE Zero Day But Leaves Out Word Vulnerability

November 12th, 2013

video

This November Patch Tuesday will be a busy one for IT, especially for the many organizations that use IE. 8 bulletins, 3 rated critical, were released by Microsoft today and first on your list of priorities should be MS13-088. This is a critical, cumulative update for IE going back to IE 6 and covers 10 […]



By: - Forensics and Security Expert

@phenrycissp

8 Bulletins Pre-Released for November Patch Tuesday

November 7th, 2013

Microsoft pre-released 8 bulletins today for November Patch Tuesday – 3 are rated critical and 5 important. Overall, another busy month for IT but of course, that’s the norm these days. First on your list of prioritization should be bulletin 1 which is a critical remote code execution for Internet Explorer given its wide-spread use. […]



By: - Forensics and Security Expert

@phenrycissp

October Patch Tuesday Includes IE Patch and 7 Others

October 8th, 2013

video

Microsoft released 8 patches this October Patch Tuesday – 4 are critical and 4 important. Two pieces of good news this month – the IE vulnerability Microsoft released a fix-it for last month will be included in this month’s crop of patches and the bulk of the October issues do not impact the current code […]



By: - Forensics and Security Expert

@phenrycissp

October Patch Tuesday Readies for 8 Bulletins & 10-Year Anniversary

October 3rd, 2013

4 Critical 4 Important Microsoft is preparing 8 bulletins this October Patch Tuesday – 4 critical and 4 important. Two pieces of good news this month – the IE vulnerability Microsoft released a fix-it for last month will be included in this month’s crop of patches and the bulk of the October issues do not […]



By: - Forensics and Security Expert

@phenrycissp

Microsoft Releases Security Advisory and Fix It for IE

September 17th, 2013

Microsoft is aware of targeted attacks that attempt to exploit the vulnerability in Internet Explorer 8 and 9. With the additional security that is available in IE 10 and 11 users should be less concerned. Applying the Microsoft Fix it solution, “CVE-2013-3893 MSHTML Shim Workaround,” prevents the exploitation of this issue. Get the Fix It solution […]



By: - Forensics and Security Expert

@phenrycissp

Apple Fingerprint Scanner: Game Changer or Game Over?

September 11th, 2013

Apple’s announcement of the company’s new iPhone 5S comes equipped with a fingerprint scanner has the potential to be a real game changer for personal device security – if it’s done right. There are two factors that will determine the real success of this new feature, which has undeniable potential. First, reliability and second, security – though […]


By: - Forensics and Security Expert

@phenrycissp

A September to Remember This Patch Tuesday

September 10th, 2013

video

UPDATE September 16, 2013: Due to installations problems and some re-targeting issues, Microsoft re-issued a few patches last week. Get the new updates on the Microsoft blog. This is definitely a September to remember – last year at this time Microsoft released only 2 bulletins and both were only rated Important. Contrast that to today […]


By: - Forensics and Security Expert

@phenrycissp

Current Codebase Spared Critical Issues This Patch Tuesday

September 5th, 2013

4 Critical  10 Important  Microsoft is readying the release of 14 bulletins this September Patch Tuesday. Four are considered critical and the remaining 10 important. Internet Explorer, Windows XP and Windows 2003 will take the brunt of this month which is something we hopefully will see more of as the XP end-of-life date of April […]


By: - Forensics and Security Expert

@phenrycissp

Keep Calm and Patch On This Patch Tuesday

August 13th, 2013

video

Microsoft released 8 security bulletins this Patch Tuesday. At first glance, that may seem like a high number but the good news is, at this time, none of the vulnerabilities have been under active attack. While 3 bulletins are considered critical with the balance important, two should be your top priority. MS13-059 is an Internet […]


By: - Forensics and Security Expert

@phenrycissp

8 Bulletins, 3 Critical for August Patch Tuesday

August 8th, 2013

  IT departments will get a bit of a reprieve this August Patch Tuesday. While 8 bulletins may seem high at first glance, 3 of them are considered critical and just 1 – bulletin 1 – impacts the current code base. With 8 bulletins today, Microsoft’s year-to-date total is 65 patches. For anyone keeping track, […]


By: - Forensics and Security Expert

@phenrycissp

The Danger of Open Access to University IP

July 22nd, 2013

When I saw last week’s New York Times story about the problems universities are experiencing with cyber attacks, my first thought was one of surprise. Wasn’t this kind of story published years ago? Hackers are opportunistic and universities pride themselves on providing free and open access to materials. Cyber attacks on research universities have been […]



IT Secured. Success Optimized.™

Contact Lumension | Privacy Policy

Connect & Follow Us

blog.lumension.com