- Dir. Solutions Marketing

Tiger Blood, Adonis DNA, Malware … Oh My!

March 10th, 2011

As sure as night follows day, malware follows the meme. And latest meme, apparently, is all Charlie Sheen, all the time. I don’t watch much TV (read: none), and don’t read many celebrity gossip blogs (read: none), but even *I* am painfully aware of Charlie Sheen’s seemingly wacked out 20/20 special and the sundry other [...]


- Sr. Director Solutions and Strategy

@donleatham

Microsoft Issues Second Out-of-Band Patch-Addresses IE Cumulative Update

March 30th, 2010

Microsoft announced today they will be releasing a critical out-of-band patch MS10-018. From an impact perspective, this is a remote code execution and impacts Internet Explorer (IE) versions 6 and 7.  The unscheduled release is in response to a reported upswing in attacks against Microsoft customers as detailed in Microsoft Security Advisory 981374. Beyond the [...]


- Forensics and Security Expert

@phenrycissp

Will 2010 be the Year of Zero-Day Vulnerabilities for Browsers?

March 23rd, 2010

It certainly seems that in 2010, a month doesn’t go by without hearing about yet another zero-day threat affecting a popular browser software. In the first quarter of 2010, we already have seen new zero-day issues in the most popular browsers in use today: Microsoft reported yet another new zero-day issue with Internet Explorer, and [...]


- Dir. Solutions Marketing

Could Firefox 3.6 be the Answer to Aurora?

January 22nd, 2010

Not sure this is entirely coincidental, but Mozilla released Firefox 3.6 on Jan. 21 – the same day that Microsoft announced their out-of-band patch to the so-called Google Attack / Aurora exploit / IE zero-day. Perhaps fortuitous is a better way of putting it. My colleagues Don Leatham and Paul Zimski have both weighed in [...]


- IT Security Expert

Google Attack, Aurora, IE Zero-Day – Facts, Practical Mitigation and Protection Guidance

January 21st, 2010

There is a new Internet Explorer zero-day vulnerability this week that is at the center of “in-the-wild” attacks targeting large corporations including Google and Adobe.  As the research and vendor communities have been deconstructing the vulnerability, automated attack tools and various methodologies used to carry out the attack, a number of facts and mitigation steps [...]


- Sr. Director Solutions and Strategy

@donleatham

Microsoft Issues Out-of-Band Patch – Addresses “Google-China” Attack Vector

January 21st, 2010

Today, Microsoft released an out-of-band security patch: Microsoft Security Bulletin MS10-002 – Critical, Cumulative Security Update for Internet Explorer (978207).  MS10-002 address the previously announced flaw in Internet Explorer that has been widely reported as the key attack vector in reported attacks against Google and other companies by entities based in China (MS Security Advisory [...]


- Forensics and Security Expert

@phenrycissp

December 2009-Patch Tuesday Security Briefing

December 9th, 2009

video

Video Blog discussing Patch Tuesday December 2009.


- Dir. Solutions Marketing

Three Steps to Dump IE 6 … NOW

November 24th, 2009

In my post some time ago about the newly released Windows 7, I made mention of a Gartner report entitled “Planning for the Security Features of Windows 7.” I want to revisit this report in a little greater detail – in particular, the statement “Use the migration to Windows 7 as the catalyst to get [...]


- Forensics and Security Expert

@phenrycissp

Another Zero Day Threat Discovered in Internet Explorer

November 23rd, 2009

The latest Internet Explorer zero day threat will unfortunately catch many off guard and will have a significant impact on many organizations that are still relying on outdated defenses. For the past decade or perhaps longer, our way of dealing with threats has been to try to filter our way out of trouble. However, with [...]


- Forensics and Security Expert

@phenrycissp

Patch Tuesday II – The Sequel

July 27th, 2009

IT pros are anxiously awaiting this Tuesday’s out-of-band patches from Microsoft. The patches are supposed to add an additional layer of security to the issues for Internet Explorer, which was patched just last Tuesday, as well as handle issues within Visual Studio. The IE issues involve the ongoing Active X saga and hopefully will provide [...]



IT Secured. Success Optimized.™

Contact Lumension | Privacy Policy

Connect & Follow Us

blog.lumension.com