Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: Patching

PCI DSS Position on Patching May Be Unjustified

June 27, 2008 – 6:00 am – Verizon Business recently posted an excellent article on their blog about security patching. As someone who just read The New School of Information Security (an important book that all information security professionals should read), I thought it was refreshing to see someone take an…
By | Posted in Compliance and Laws, Risk Analysis, Security Metrics | Also tagged , , | Comments (2)

Unofficially why 49/50 WordPress blogs are vulnerable: App Security and Dev

June 11, 2007 – 6:42 am – There was a survey conducted that said that 49/50 WordPress blogs are running old and vulnerable versions of the software.I inquired about WordPress versions this past Saturday night at a blogger meetup I attended, mainly to share my experiences about blogging and meet other individuals who…
By | Posted in General | Also tagged , , | Comments (2)

PC World Knocks Apple Security

May 11, 2007 – 6:26 am – In 10 Things We Hate About Apple, PC World writes: 7. Give Me a Sign Does anyone want to tell us when the next Mac OS X software updates will hit? What security vulnerabilities Apple is working on fixing? In April, Apple released a patch that plugged more than two dozen…
By | Posted in General | Also tagged , , | Comments (0)

Rapid Fix and Deployment – The next big security metric for Microsoft

March 23, 2007 – 7:07 am – With Microsoft’s increase in patch Quality Assurance and the increase in Vista security, Microsoft customers may now begin to request quicker patch cycles and turnaround time after zero-day vulnerabilities are announced. Microsoft created Patch Tuesday in response to customer feedback…
By | Posted in General | Also tagged | Comments (0)

On eEye & Microsoft: No more thanks…

August 25, 2006 – 12:47 am – Eweek reports that Microsoft removed the Thanks to eEye for bulletin MS06-042. This is a curious case. One wonders: Is it possible that alternative agendas were at play here under the guise of the full-disclosure/responsible disclosure debate? eEye has an interest in gaining publicity by…
By | Posted in General | Also tagged , | Comments (0)