Barney's Blog

Blog archive

Sweet 16...Security Patches, That Is

Best get your troops ready this Tuesday (hopefully they had Columbus Day off and are rested,) 'cuz there will be no less than 16 patches waiting for them.

I wouldn't exactly freak as I believe Microsoft is more proactive than most (or arguably all) vendors in admitting its own flaws. And let's be honest, between Windows and Office, Microsoft has an attack surface the Taliban would drool over (fortunately, their computer skills are as backwards at their philosophy). 

Some experts believe the large release has more to do with the time of year than actual vulnerabilities. The idea is that IT slows down as the holidays approach -- so load 'em now while they have your full attention.

In any event, you or your subordinates will be busy this Tuesday. Sixteen sounds like a lot, but only four are critical; the rest are expected to make it through surgery.

Overall, nearly 50 'vulnerabilities' are handled -- which represents a record (Lindsay Lohan's doctors may beg to differ).The biggest IT hassle is remote code execution, which accounts for a perfect 10 in this patch batch.

Posted by Doug Barney on 11/29/2010 at 1:18 PM


Featured

  • Azure Active Directory Connect Preview Adds Support for Disconnected AD Forests

    Microsoft on Thursday announced a preview of a new "Cloud Provisioning" feature for the Azure Active Directory Connect service that promises to bring together scattered Active Directory "forests."

  • Microsoft Defender ATP Gets macOS Investigation Support

    The endpoint and detection response (EDR) feature in Microsoft Defender Advanced Threat Protection (ATP) has reached the "general availability" stage for macOS devices.

  • How To Block Self-Service Purchasing in Microsoft's Power Platform

    Microsoft threw Office 365 admins a bone when it gave them the ability to block users from purchasing Power Platform tools without IT approval. Here's how to prevent total anarchy.

  • Azure DevOps Services Losing Support for Alternate Credentials

    Microsoft gave notice last week that it's going to drop Alternate Credentials support for authenticating users of its Azure DevOps Services.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.