By: - Dir. Solutions Marketing

Infosec Haiku

October 18th, 2014

Anata no joho sekyuritei konshu no haiku Huge Month for Patches —   and Much More Time to Patch It Up   ### Notes ### * Thanks to Ms. Etsuko vdH for the translation. * Thanks to everyone who’ve contributed their haikus … watch this space to see if yours is published. * Submit Your […]



By: - Dir. Solutions Marketing

July Java Jamboree

July 15th, 2014

The latest Critical Patch Update (CPU) from Oracle has been released today. Based on the pre-release information, the July 2014 CPU contains 113 new security vulnerability fixes, covering everything from its flagship database and Fusion Middleware to Hyperion and Solaris. [See update below.] Of particular interest to endpoint administrators will be the 20 vulnerabilities in […]



By: - Independent Computer Security Analyst

@gcluley

Java on XP?

July 14th, 2014

Is it still supported, and what should you do about it? Well done to Oracle, which has successfully managed to confuse everyone about what the situation is regarding whether Java (a development platform with a long history of security holes) will continue to be properly supported on Windows XP (an operating system with a long […]



By: - Dir. Solutions Marketing

WinXP and Java: Double the Risk, Double the Fun

July 8th, 2014

Another reason, as if you needed one, to upgrade your WinXP systems: Java 8 – the latest version is 8u5 – has compatibility issues, and Java 7 – the latest version of which is 7u60 – is no longer supported on WinXP. As Oracle has put it: “Users may still continue to use Java 7 […]



By: - Independent Computer Security Analyst

@gcluley

Isn’t It Time Oracle Gave Us Monthly Security Updates for Java?

March 24th, 2014

In some ways, it could be argued that Java is an incredible success. I’m serious. Stop laughing at the back. You see, according to Oracle, Java’s developer, the product is used on over 3 billion different devices worldwide. That *is* impressive. But, for those of us concerned with securing systems and keeping computer data safe, […]



By: - Senior Architect

@danteal

Defending Against Java

July 24th, 2013

Java offers enterprises the ability to write code once and run it everywhere.  However, this flexibility comes with a high cost: reduced security on endpoints. It has lately gotten so bad that Java has been nicknamed Just Another Vulnerability Announcement. Oracle has been working to produce updates to Java that addresses these vulnerabilities, but many […]



By: - Dir. Solutions Marketing

Much Ado About Java

June 12th, 2013

So, have you seen the latest about Java? Seems most organizations are still running (really) old versions. And even the current version has what is technically known as a shit-ton of zero-day vulnerabilities. And so Oracle is changing their vulnerability numbering system to accommodate all of them, in addition to taking other steps surrounding Java […]



By: - Forensics and Security Expert

@phenrycissp

Ten Bulletins This May Patch Tuesday; But Don’t Get Excited

May 14th, 2013

video

While 10 patches covering 33 vulnerabilities may seem like a high number, it isn’t all bad news for IT professionals this May Patch Tuesday. Only two of the 10 patches released today are critical and both impact Microsoft Windows and Internet Explorer. The two critical-rated patches address the IE 8 zero-day that made news after attacking a […]



By: - Forensics and Security Expert

@phenrycissp

Patch Tuesday Not Too Taxing For IT This Month, Despite Heavy Patch Count

April 9th, 2013

video

It’s another heavy month of patches this month from Microsoft. There are 9 bulletins, with 2 critical and 7 important. While 9 may seem like a lot, there are a few pieces of good news this month. First, there are only 2 critical bulletins and most of the patches are rated important. Second, most of […]



By: - Forensics and Security Expert

@phenrycissp

Déjà Vu, Apple Dangerously Out Of Sync With Oracle Patch

September 10th, 2012

Back in March of this year Apple users were left woefully exposed when Apple fell out of sync with Oracle on Java patching. The issue led to some 600,000 Apple users being infected with the Flashback Trojan. The fix for Java had been provided by Oracle back in February and the delay in providing the patch to their users is credited with the rapid high infection rate of Flashback among Apple users.


By: - Forensics and Security Expert

@phenrycissp

Patch Tuesday August 2012: Something Old, Something New and a Little Something to Make You Blue

August 14th, 2012

video

Several reboots affecting all versions of Windows makes August a busy patch month. Microsoft updates include patches to new problems, updates to old problems and something that may cause more work than you may have been anticipating this month. Prioritizing the Patches There are nine security bulletins this Patch Tuesday, five critical and four important. […]


By: - Forensics and Security Expert

@phenrycissp

July 2010 Patch Tuesday Security Briefing

July 14th, 2010

video

Microsoft announced that they have released four security bulletins to address five separate current vulnerabilities. Especially concerning this month is the fact that all three bulletins rated “critical” also rate a “1” on Microsoft’s exploitability index (with MS10-042 addressing a vulnerability that is actively being exploited.)  Additionally, MS10-043 requires a reboot and affects Windows Server […]


By: - Sr. Director Solutions and Strategy

@donleatham

A Double Whammy Patch Tuesday from Microsoft and Oracle

July 13th, 2010

Microsoft announced that they have released four security bulletins to address five separate current vulnerabilities. Especially concerning this month is the fact that all three bulletins rated “critical” also rate a “1” on Microsoft’s exploitability index (with MS10-042 addressing a vulnerability that is actively being exploited.)  Additionally, MS10-043 requires a reboot and affects Windows Server […]


By: - Forensics and Security Expert

@phenrycissp

February 2010 Patch Tuesday Security Briefing

February 10th, 2010

video

After a light start to the year in terms of patching, Microsoft is throwing out its heaviest patch load in four years for IT departments to tackle for the month of February with 13 patches in all – five of which have a maximum security rating of critical. While IT teams are looking at this […]


By: - Sr. Director Solutions and Strategy

@donleatham

IT Departments Strained by Record Breaking Patch Tuesday

February 9th, 2010

After a light start to the year in terms of patching, Microsoft is throwing out its heaviest patch load in four years for IT departments to tackle for the month of February with 13 patches in all – five of which have a maximum security rating of critical. Three of the critical patches standout from […]



IT Secured. Success Optimized.™

Contact Lumension | Privacy Policy

Connect & Follow Us

blog.lumension.com