Barney's Blog

Blog archive

Silent, But Not Deadly

Every month, usually before and after the first Tuesday of the month, I bring you news of the latest public Microsoft patches. But not all patches are so public. There are also so-called "silent patches" that Microsoft releases without detailing.

What Microsoft does, according to a Shavlik patch exec, is pretty normal. Microsoft sees various vulnerabilities, or variants, and rolls the fixes into its monthly patch batch without spelling out all the details. A variant is where a common flaw is analyzed by hackers, who then attack closely related (but not always fixed) flaws.

In fact, Shavlik likes this approach. Variants are cured, and IT isn't overwhelmed with a bazillion patches to install.

What say you? Do you need each and every detail of each patch? Say it, don't spray it at [email protected]

Posted by Doug Barney on 02/18/2011 at 1:18 PM


Featured

  • Phishing Tops Concerns in Microsoft Study of Remote Work

    Potential phishing attacks were a top concern of most IT security professionals when organizations switched to remote-work conditions early last year.

  • How To Configure Windows 10 for Intel Optane Memory

    Intel's Optane memory technology can significantly improve the performance of your Windows 10 system -- provided you enable it correctly. A single mistake can render the system unbootable. Here's how to do it the right way.

  • Microsoft and SAP Enhance Partnership with Teams Integration

    Microsoft and SAP this week described continuing partnership efforts on Microsoft Azure, while also planning a Microsoft Teams integration with SAP's enterprise resource planning product and other solutions.

  • Blue Squares Graphic

    Microsoft Previews Azure IoT Edge for Linux on Windows

    Microsoft announced a preview of Azure IoT Edge for Linux on Windows, which lets organizations tap Linux virtual machine processes that also work with Windows- and Azure-based processes and services.

comments powered by Disqus